We have SCCM 2007 R2 environment with integrated WSUS. We have a separate MDT environment which is used for OS deployment. I am looking at way of making sure that once a machine is built (WIN 7 image put on) through MDT we are automatically able to pull down updates from SCCM (WSUS). Has anyone ever done this? and if so can you please advise how we could go about setting this up from within MDT?

Are you using Stand Alone MDT or do you have MDT installed on the SCCM server? If you have it running as a stand alone then you would have to use the Offline Patching (Look at the MDT options) that will use the Software Update Packages to install. You just have to move them like the other packages to the MDT system. If you want online then you can't with stand alone MDT. You would need to wait for the machine to hook into SCCM, register, scan and then update. Otherwise if you integrate SCCM / MDT or even in normal OSD you can set the machine to scan and install patches. The other way would be to force the machine to run windows update and install all recommended updates. This would bypass the aproved updates from the WUS side and you have no control over what is installing. http://www.sccm-tools.com http://sms-hints-tricks.blogspot.com

Why would you use MDT integrated within CM07? There would be not automated way to do this, Im not even sure that a scripted method would work either. The best that I could suggest it this http://myitforum.com/cs2/blogs/rzander/archive/2008/08/11/sms-sccm-commandline.aspxhttp://www.enhansoft.com/

Hi itsted I highly suggest using SCCM for your deployments (with MDT integration), as this would simplify the application of updates during imaging. Otherwise, I would look at scripting some config manager actions post install to perform the Scan for updates, and deploy updates actions. The article: (http://technet.microsoft.com/en-us/library/bb633207) shows you how to initiate a machine policy action, and you can easily perform the other actions by substituting the name within the script @ approx line 30: if oClientAction.Name = "Request & Evaluate Machine Policy" then You need to make sure that your clients are configured to obtain their updates from the WSUS (SCCM) server. (Use group policy) This is a problematic round to embark upon though, and I will repeat that I highly suggest you go the SCCM+MDT route.... (makes applying updates during deployment easy!) Jamie Courtes MCTS - SCCM 2007 MCTS - SCCM 2012