Declining superseded updates in WSUS

windows wsus windows-update update
9,213

One area to be careful is there can be different compatibility between the updates, for example I have seen many updates compatible with Windows XP, Vista and Windows 7 to be superceded by an update only compatible with Windows 7.

Here is what Microsoft says:

"WSUS does not automatically decline superseded updates, and it is recommended that you do not assume that superseded updates should be declined in favor of the new, superseding update. Before declining a superseded update, make sure that it is no longer needed by any of your client computers.

The following are examples of scenarios in which you might need to install a superseded update:

" If a superseding update supports only newer versions of an operating system, and some of your client computers run earlier versions of the operating system. " If a superseding update has more restricted applicability than the update it supersedes, which would make it inappropriate for some client computers. " If an update no longer supersedes a previously released update because of new changes. It is possible that through changes at each release, an update no longer supersedes an update it previously superseded in an earlier version. In this scenario, you will still see a message about the superseded update, even though the update that supersedes it has been replaced by an update that does not."

From: Microsoft Windows Server Update Services 3.0 SP1 Operations Guide http://www.microsoft.com/en-us/download/details.aspx?id=4813

Share:
9,213

Related videos on Youtube

Wes Sayeed
Author by

Wes Sayeed

Updated on September 18, 2022

Comments

  • Wes Sayeed
    Wes Sayeed over 1 year

    When you click on an update that has been superseded in WSUS, you get a warning that says you should verify the update is no longer needed before declining it. According to Microsoft, you're supposed to approve the superseding updates first, wait for computers to take them, verify the old ones are no longer needed by clients, and then you can safely decline the superseded updates. Yeah, umm... that's not very practical, Microsoft.

    For years I've just blanket declined superseded updates, but I recently came across an article that says you shouldn't do that.

    So my question is this: Why not?

    Is there ever a scenario in which a particular update is not applicable to a client but the update it supersedes is? Can anyone give me a compelling reason why blindly declining a superseded update is not a good idea?

    • jscott
      jscott almost 10 years
      Very good question, especially considering the WSUS Server Cleanup will bulk decline superseded updates for you as well.
  • Wes Sayeed
    Wes Sayeed almost 10 years
    Wow reading that second bullet point makes my head hurt. Our network has about 1200 workstations and 200 or so servers. The workstations are about 80% Win7 and 20% XP. Servers run the whole gamut between '03 and 2012 R2. Most updates specifically say "Security Update for Windows 7" or something similar. Wouldn't the update be published under two different KB#s if it applied to both XP and Win7?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Server 2012 R2 stuck checking for updates from WSUS server
WSUS Windows Update Client stuck
WSUS clients can't find updates
How to determine what new products and classifications have been added by WSUS
WSUS is downloading hundreds of old declined updates
How do I make Windows Updates install automatically without rebooting the server?
How can I move computer groups in WSUS?
How to disable WSUS on our domain?
WSUS Shows Incorrect Version & WSUS (isolated) fails to download updates
How to automatically decline quality rollup updates in WSUS