Updates are downloaded bypassing WSUS

spiceuser-9bc02 · 2025-03-12T08:31:39.310Z

Dear colleagues.
I have a question for you. Despite setting the wsus configuration GPO policy not which machines are downloading updates bypassing WSUS. It is possible to force manual search for patches from the Internet but that would be strange. From proxy logs more than 500 machines are downloading packages directly from microsoft sites. Is it possible to verify this or how to check why machines are not using wsus?

Zrzut ekranu 2025-03-12 092950487×417 95.7 KB

volts · 2025-03-12T10:44:02.125Z

Show us your WSUS GPO policies. A screenshot will do

Typically you have to hide the Windows Update screen from users too (or at least disable the buttons (in my experience)

spiceuser-9bc02 · 2025-03-12T10:53:52.386Z

Zrzut ekranu 2025-03-12 1152501237×636 17.1 KB

spiceuser-9bc02 · 2025-03-12T10:57:46.660Z

Configuration was not changed therefore situation “strange”

volts · 2025-03-12T11:03:55.953Z

to use WSUS you need to use option 4 (Auto Download and Schedule not option 3 Auto Download ans notify

spiceuser-9bc02 · 2025-03-12T11:22:16.160Z

Thank you