So start the mmc for Group Policy Management and create a suitable OU in your ad structure, e.g. "WSUS Laptops".
After that you can start creating the Group Policy. In conjunction with your environment you have to decide which settings you want to use.
Here you can see my settings for my test environment:
If you have done these steps, you can have a look at the updates. In my case I've decided to aprove all updates with the "Default Automatic Approval Rule" (you can find this in "Options" --> "Automatic Approvals").
So you can start updating your clients in conjunction with your group policy.
Of course there are more options you can configure but at this point, for me it's enough to hold the clients secure.
Regards
Hi Manu,
AntwortenLöschenand keep in mind; by default, Group Policy refreshes in the background every 90 minutes, with a random offset of 0 to 30 minutes. If you want to refresh Group Policy sooner, you can go to a command prompt on the client computer and type: gpupdate /force
Hi Torsten,
AntwortenLöschenthanks for your post.
Alternatively you can use the psexec tool of sysinternals to run this command from a remote computer:
http://technet.microsoft.com/de-de/sysinternals/bb897553.aspx
But I'm sure that you know that because from you I have this tip ;).
It's good to have such a competent colleague :).
Have a nice weekend