Installation and Patching

How can we improve the installation and patching of Windows Server?

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Increase Active Hours from 12 hours to 22 hours

    The current 12 hour window for "Active Hours" needs to be longer so the updates/reboots can happen in the middle of the night.

    2 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Patch Management  ·  Flag idea as inappropriate…  ·  Admin →
    • Get-WsusComputer -ComputerUpdateStatus failed -ComputerTargetGroups clients <-- this lists ALL in the target group, instead of only those

      Get-WsusComputer -ComputerUpdateStatus failed -ComputerTargetGroups clients <-- this lists ALL in the target group, instead of only those that have status=failed

      Same result if I use -IncludedInstallationStates Failed too.

      2 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        I agree to the terms of service
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  WSUS  ·  Flag idea as inappropriate…  ·  Admin →
      • WSUS does not display the operating system for Windows 2016 servers as 2016 servers. It shows them as Window 10 machines.

        WSUS 2012 does not display the operating system for Windows 2016 servers as 2016 servers. It shows them as Window 10 machines.

        . Background
        WSUS 2012 does not display the operating system for Windows 2016 servers as 2016 servers. It shows them as Window 10 machines.

        Problem Description
        This creates a fair amount of confusion as we know these are Server 2016 systems but we can’t be certain that they’re being updated properly without examining each system to ensure it has the current platform-specific updates

        2 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          I agree to the terms of service
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  WSUS  ·  Flag idea as inappropriate…  ·  Admin →
        • PowerShell for Windows Deployment Services lacking and/or broken

          Trying to automate the process of building boot image and installation image into WDS. It is nice to see some PowerShell commands, but there are still things that appear not to be possible to do with PowerShell and must resort to WDSutil. For example, I cannot find a cmdlet to create a new driver group. I have to issue the wdsutil command to create the driver group. I can then add all my drivers into the group using PowerShell, but then there does not appear to be a way to use PowerShell to filter the drivers by group to be…

          2 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            I agree to the terms of service
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  WDS & MDT  ·  Flag idea as inappropriate…  ·  Admin →
          • Remove supersedence logic from Server 2012 R2 security patches

            Currently the non quality security updates are superseded by the security quality updates. This causes most of the standard reporting to break for companies that do not need or want the quality updates for security patches. 3rd party scanners also will show servers as non patched if a company only installs the non quality package. Please do not set the quality updates to supersede the non quality updates. This will prevent companies from having to spend large amounts of development time to rework their processes that worked for several years.

            4 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              I agree to the terms of service
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Patch Behaviors  ·  Flag idea as inappropriate…  ·  Admin →
            • KB3159706 make WSUS console crash.

              After install KB3159706, WSUS console can't be opened. Need to do post installation action. It did make trouble. At firs, user doesn't know what cause this problem. After spending time to search for solution, user figure out that this problem is caused by KB3159706. It waste user's time. It's better to have a way to warning user that there is known issue in the update patch when user install the update patch.

              1 vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                I agree to the terms of service
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  WSUS  ·  Flag idea as inappropriate…  ·  Admin →
              • IIS logging for WSUS

                Minimize number of 500 errors in IIS logs due to recycling of WSUS AppPool during client scans as it causes excessive false positives in monitoring systems.

                5 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  I agree to the terms of service
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  WSUS  ·  Flag idea as inappropriate…  ·  Admin →
                • Provide full powershell integration for patching

                  There should full powershell integration for both WSUS and Server Side WU Client. This would enable scenarios such as post reboot checks for additional patches and mass patching automation.
                  It would also allow for things like managing small server deployments that don't have WSUS by being able to use remote powershell to query the patches currently installed on servers, check for available patches and then tell them to remediate and reboot if required.
                  Currently these can be done mostly through WMI and customer powershell scripts that wrap around these, but it really needs proper integration.
                  Having powershell to query required…

                  108 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    I agree to the terms of service
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    8 comments  ·  Patch Management  ·  Flag idea as inappropriate…  ·  Admin →
                  • Windows Deployment Services should not need the GUI

                    As the title says, at the moment it is impossible to install WDS in server core mode, I personally would like to have a PXE server on a server core instance

                    8 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      I agree to the terms of service
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  WDS & MDT  ·  Flag idea as inappropriate…  ·  Admin →
                    • Configuration process - wait for Update to complete, before "auto-restart"

                      Hi Dev Team,

                      Configuration process (Add / Remove Roles) should check if Updates are being downloaded / installed, before restarting the system.

                      Cheers

                      4 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        I agree to the terms of service
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Patch Behaviors  ·  Flag idea as inappropriate…  ·  Admin →
                      • Remove Windows Store form Windows Server

                        No one need that on a Server.

                        6 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          I agree to the terms of service
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          2 comments  ·  Misc  ·  Flag idea as inappropriate…  ·  Admin →
                        • Give us back lightning-fast Updates

                          Consider having the entire Component-based Servicing Infrastructure running from RAM if available and as far as is possible.

                          I've done extensive analysis and testing to what CSI is actually doing. While no doubt it is much much more secure/reliable then for example WinXP updates were, it does have a significant drawback, which hurts even more in Virtualization. Let me ask you: What do you commonly have enough of in Virtualization ? CPU ? Yes, Mem. ? Usually, also yes, Network ? Usually, yes, Disk I/O ? NO. Usually, disk I/O is the common bottleneck in most Virtualization-environments I've come across…

                          5 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            I agree to the terms of service
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Patch Behaviors  ·  Flag idea as inappropriate…  ·  Admin →
                          • Resume monthly Windows Update rollup releases for Windows 2012R2

                            The monthly Windows Update rollup releases greatly sped up creating a machine from scratch, upgrading an image to latest, and just patching machines. These rollups ceased shipping in December 2014. There has been no rollup release in over 14 months for the current latest production server OS from Microsoft.

                            This translates to over a hundred updates (about 150 past the last rollup) and a few reboots, multiple ngen passes for .Net that aren't needed. Only the last of these time-costly operations needs to run, a handy side-effect the rollup has.

                            Instead on thousands of tens of thousands of sysadmins spending…

                            22 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              I agree to the terms of service
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              3 comments  ·  Patch Behaviors  ·  Flag idea as inappropriate…  ·  Admin →
                            • More granular control of Windows Update policy scheduled install time.

                              When configuring the Windows Update Policy, you can only select the day and whole hours as scheduled install day. I would like to be able to configure hours and minutes (example 8 hrs and 15 minutes).

                              Also recurrencies like "every second tuesday of the month) would be beneficial.

                              8 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                I agree to the terms of service
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Windows Update  ·  Flag idea as inappropriate…  ·  Admin →
                              • Cleanup Windows update cache file

                                Cleanup automatically the cache file of the windows update file, or permit to put it on other disk that system disk

                                6 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  I agree to the terms of service
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Windows Update  ·  Flag idea as inappropriate…  ·  Admin →
                                • Improve the performance of WSUS to inventory and deploy patch on server

                                  Improve the time to see the missing patchs of a server in WSUS after use the command "wuauclt /detectnow" or change the system detection to have the same reactivity like Windows Update on internet.

                                  3 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    I agree to the terms of service
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  WSUS  ·  Flag idea as inappropriate…  ·  Admin →
                                  • When a system is using WSUS, the Delivery Optimization interface should be disabled.

                                    Currently, when a system is configured via GPO to use WSUS, the user can still to go 'Settings' / 'Update & Security' / 'Advanced Options' / 'Choose how updates are delivered' and change the settings.

                                    Since these settings have no effect on a machine that is using WSUS, the Choose how updates are delivered link on the 'Update & Security' / 'Advanced Options' interface should be disabled.

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      I agree to the terms of service
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  WSUS  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Add Windows Update missing in ServerManager

                                      Adding a dashboard for missing patch in ServerManager (from WSUS or Microsoft Update)

                                      7 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        I agree to the terms of service
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  Windows Update  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Windows Update - Restart services not full system

                                        An update, security patch or otherwise should only require a restart of a service where possible not require an entire system restart for every update.

                                        10 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          I agree to the terms of service
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Windows Update  ·  Flag idea as inappropriate…  ·  Admin →
                                        • power saving in server SKU's

                                          Windows servers share the same power saving option than in workstations (balanced).
                                          As servers are designed to work with high load default setting should be high or similar.

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            I agree to the terms of service
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Deployment & Installation  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3
                                          • Don't see your idea?

                                          Feedback and Knowledge Base