WSUS and Pulled Patches
When Microsoft pulls bad patches, does WSUS automatically pull the patches as well or do we need to do it manually?
If we have to do it manually, how do we keep on top of bad patches?
Solution 1:
Microsoft has a way to Expire updates, so they do get expired and not further distributed. However, they do not get uninstalled automatically when they are already installed on WSUS Clients.