WSUS and Pulled Patches

windows windows-update update wsus

When Microsoft pulls bad patches, does WSUS automatically pull the patches as well or do we need to do it manually?

If we have to do it manually, how do we keep on top of bad patches?


Solution 1:

Microsoft has a way to Expire updates, so they do get expired and not further distributed. However, they do not get uninstalled automatically when they are already installed on WSUS Clients.

Related

Best Practice for Mapping Domain Names to Docker Container
Specify a SHA-1 or SHA-2 cert depending on client abilities
How switching off SSLv3 in Courier-IMAP server affects old Mail User Agents?
CentOS requires entering password twice for sudo, login
Why is a windows file share not accessible intermittently?
Odd performance fluctation with php-fpm and nginx
GPO startup script not being ran
Slab usage extremely high?
I can't upload server certificate on AWS IAM
Configuring Synology NAS as freeIPA client
Windows updates fail (KB2992611) - "The stub received bad data"
Windows Server 2012 time keeps setting itself 12 minutes ahead