Not-Required Software Updates that should be required?

I am attempting to deploy software updates to our network using SCCM many updates however are showing as "not-required" when I am fairly certain they should be, for example Windows 7 Security updates are only required by 1000 of our 6000 computers.  All 6000 computers are for the most part identical builds and thus logically this should be required for all of them.

When a new definition for SCEP comes out however that is properly showing as required for all 6000 computers.

August 21st, 2015 7:13am

Hi,

Are the updates in question superseeded by other updates? that is the most common reason for an update not be needed.. as it sounds like everyhing works with the SCEP numbers.

Regards,

Jrgen

Free Windows Admin Tool Kit Click here and download it now
August 21st, 2015 8:09am

I have filtered me view to include AND Superseded = No, and it field the same level of not required updates.

August 21st, 2015 2:58pm

you can look at the client logs for the software updates scan(wuahandler.log,updatesdeployment.log,updatestore.log) .Have a closer look at client logs if the client is scanning the right version of software update package version and if the logs says ,the particular patch is not required,you can probably download any patch that you feel is required by the client and install it manually to confirm if it install or if that says ,not applicable .reference eskonr.com/2015/04/sccm-2012-troubleshoot-client-software-update-issues/

Free Windows Admin Tool Kit Click here and download it now
August 21st, 2015 7:15pm

I am attempting to deploy software updates to our network using SCCM many updates however are showing as "not-required" when I am fairly certain they should be, for example Windows 7 Security updates are only required by 1000 of our 6000 computers.  All 6000 computers are for the most part identical builds and thus logically this should be required for all of them.

When a new definition for SCEP comes out however that is properly showing as required for all 6000 computers.

This can occur, if there is a pre-requisite of some kind, e.g. at a certain point, MSFT will demand/require you to have a certain servicepack or rollup, to get updates after that. If you don't deploy that servicepack  or rollup, WSUS/ConfigMgr will not offer any further updates to that client computer, because the WUAgent detection doesn't return any results, because that servicepack/rollup is missing.

So, this also happens in situations where a product/feature upgrade is desired but not being offered, because the pre-requisites are not detected as present - a good example of that, is an IE upgrade.

So, are you missing a pre-requisite on these machines? Find out, deploy that, and does the situation change now?

August 21st, 2015 8:21pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics