A while back I reviewed WuInstall Pro, a patch management tool that allows you to push Windows updates to client computers. The publisher of the command line tool hs2n has added an important new feature, which I will discuss in this post.
- Poll: How reliable are ChatGPT and Bing Chat? - Tue, May 23 2023
- Pip install Boto3 - Thu, Mar 24 2022
- Install Boto3 (AWS SDK for Python) in Visual Studio Code (VS Code) on Windows - Wed, Feb 23 2022
One of the disadvantages of WSUS is that clients can only pull updates. With WuInstall, you can push urgent updates to clients at your convenience. This lets you control exactly when Windows clients and servers receive specific updates.
Actually, WuInstall also pulls the updates from a WSUS server or Windows Update. However, since the updates are installed whenever you run the command on a client, you can write a script that centrally forces machines to download and install updates immediately. Thus, essentially, you can push Windows updates to clients with WuInstall.
The problem with this procedure is that, depending on the size of your network, quite a few machines will start downloading updates simultaneously. If you have no WSUS server, then your Internet connection might get clogged.
WuInstall's new cache feature allows you to download Windows updates to a network share. Clients can then get their updates from this central location. This procedure is particularly useful for branch offices where you have no local WSUS server. Even though WuInstall works perfectly with WSUS, this new caching feature also allows you to replace WSUS with your own script-based patch management software.
This command caches the updates to a central network share:
wuInstall /install_cache \\your_server\network_share
This not only downloads the updates but also installs them on the client where you run the command. If you run the same command on a second client, it will check first whether the updates are already available on the network share. If they are, it will just start with the installation. If they are not, it will download them first to the cache, so other clients can get them from there in the future.
WuInstall offers quite a few command options that let you control which updates will be pushed to clients. If you use these options together with the new cache feature, WuInstall will only download the corresponding updates. Hence, if you have different patch management rules for the computers in your network, the cache will only contain the updates that have been required at least once. I think this an efficient way to manage updates.
The WuInstall documentation describes the main features of this nifty patch management command. The WuInstall Pro page gives you an overview of the new features. Please note that there is also a free version of WuInstall that doesn't offer the new caching feature.
I must add a comment about WUInstall.exe tool and about our successful integration of WUInstall.exe with the scheduler OpCon from SMA company.
The idea that we had was to use WUInstall as a Windows Update tool that can be easily integrated in OpCon for running at precise time for target Windows servers.
The integration was easy and successful.
We just add as script to be run in command shell mode in a OpCon’s job definition :
WUInstall.exe /remote “\\<server_name> -u <user_name> -p <password>” /install /autoaccepteula /reboot_if_needed
Or even better if a specific admin user is created in OpCon for the windows target servers we can mention that following command line (executed with the OpCon admin user) :
WUInstall.exe /remote \\<server_name> /install /autoaccepteula /reboot_if_needed
The result is simply and efficient:
We installed WUInstall on a server in one location and from there we run Windows Update on multiple servers target. In the scheduler OpCon we used jobs with multiple instances: one for each server.
What was also good was that with WUInstall you don t have to patch the server before to run WU.
Example no need to prepare Win2003, Win2008 old servers, all other solutions for Windows Update need patching before…so some additional work.
Thanks to the WUInstall team, well done
Remy FAURE