How to ensure server 2016 is getting all the latest patches

windows-update windows-server-2016 windows-patching

I ran a Nessus scan on my Server 2016 server and got the following error:

"The remote Windows host is missing security update 4571694."

When doing some research on the patch I found this article

"https://support.microsoft.com/en-us/help/4571694/windows-10-update-kb4571694"

If you scroll down to the bottomish of that page you will see the "How to get this update" section and it says

"Windows Update and Microsoft Update Yes None. This update will be downloaded and installed automatically from Windows Update."

From powershell I can see it is not installed:

enter image description here

I looked at all the update setting and cannot see why the update was not installed. I know I can download and install the patch manually however I am curious why windows update is not installing it for me.

enter image description here


Solution 1:

why windows update is not installing it for me

Windows updates are cumulative. 4577015 supersedes 4571694.

The problem is not Windows, it is your scanner is not up to date.

https://support.microsoft.com/en-us/help/20200908/security-update-deployment-information-september-8-2020

Related

What's your favorite SSL cert provider? [closed]
Why is my computer sending emails
Could someone point me at some basic "setting up linux at home type" docs?
How do I point my browser to a specific NIC on my machine
Get extracted size from tgz before extracting
List of currently resolved domain names
What's the AD query syntax to enumerate all users for a particular group?
How to get alert while CPU overused?
Possible Issue With (what I think is) a Virtual Network
What happens if I ask 127.0.0.1 via arp broadcasting?
Fastest way to move MySQL database to a new system while minimizing downtime?
What have you used Makefiles for (besides build automation)