0

I have a number of Windows Servers running both Server 2016 and Server 2019 operating system, and they are ignoring both local and group policies that disable automatic updates. I want to manage updates manually via a 3rd party software called Automox. I have been using it successfully with Automatic Updates disabled until recently, but I noticed that some machines have started rebooting randomly to apply updates out of series with my maintenance Windows.

I have used the sconfig utility to set Windows Updates to manual. I have also applied group policies that disable automatic updates, and the corresponding registry keys show up as expected, but Windows Update apparently has decided to ignore these settings. Instead of "Some settings are managed by your Organization" showing up in the Windows Update control panel, it just reflects that Automatic Updates will be installed over unmetered connections.

I have disabled the Windows Update Service on Production Machines for the time being in order to prevent this from recurring on business critical machines, but I need to get the policy issue resolved ASAP.

Jake Barnett
  • 1
  • What are your Automox policies for these servers? – joeqwerty Dec 15 '20 at 17:54
  • I have automatic updates disabled in automox on a device level as well, which just adds the registry key the same way Group Policy does. My update schedule is quarterly, and the patching policy in automox reflects that. I opened a case with Automox, and they confirmed the updates weren't being triggered by their agent. Windows is processing updates automatically despite the registry keys instructing it to disable automatic updates entirely. – Jake Barnett Dec 15 '20 at 20:50

0 Answers0