SCCM Windows Update Deployment

Sourabh Kanoongo 21 Reputation points
2021-06-05T14:06:26.2+00:00

Hey all.

Need help in understanding this following points.

  1. What is the significance of having WUA with SCCM Agent for deployment of windows updates? How this two components work with each other ?
  2. How different components of SCCM Agent talks with each other like scan agent, WUAHandler and what are their significance?.
  3. How the complete flow works in update deployment through SCCM, what components play role here.?
  4. What should be the approach of troubleshooting update deployment related issues? Which log to refer first which one to refer second and so on..

Many thanks in advance to all experts here. :)

Microsoft Configuration Manager Updates
Microsoft Configuration Manager Updates
Microsoft Configuration Manager: An integrated solution for for managing large groups of personal computers and servers.Updates: Broadly released fixes addressing specific issue(s) or related bug(s). Updates may also include new or modified features (i.e. changing default behavior).
1,043 questions
0 comments No comments
{count} votes

Accepted answer
  1. Amandayou-MSFT 11,136 Reputation points
    2021-06-09T03:16:53.487+00:00

    Hi @Sourabh Kanoongo ,

    will WUA performs scan based on SUG updates OR all the updates whatever it finds non superseded etc on WSUS?

    WUA performs scan based on SUG updates just we deployed instead of all the updates. We could check UpdatesStore.log and UpdatesDeployment.log. For example, we deploy 75 updates to the client, WUA scan 75 update to check if the client requires them. If the part of updates are required, these updates will be marked as Missing.


    If the response is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


1 additional answer

Sort by: Most helpful
  1. Amandayou-MSFT 11,136 Reputation points
    2021-06-07T07:09:30.503+00:00

    Hi @Sourabh Kanoongo ,

    About how to deploy software updates using SCCM, we could refer to this article:
    https://www.prajwaldesai.com/deploy-software-updates-using-sccm/
    Note: This is non-official Microsoft article just for your reference.

    Here is the steps about SCCM update deployment I have summarized.

    Step 1: We could check Policyagent.log. When policy is received, the following entry is logged in PolicyAgent.log:

    102859-671.png

    We could check if Deployment Unique Id on the console is consistent with policy id displayed in PolicyAgent.log.

    102860-672.png

    Step 2: Software update would be checked if it is required by client , kindly check UpdatesStore.log. UpdateStore.log would record updates as missing if they are required. If it is not required or has been installed by client, there is no record in this log.

    Step 3: If the update is required, the content could be detected before downloading. We could refer to UpdatesDeploymentAgent.log.

    Step 4: The content could be downloaded. we could refer to UpdatesHandler.log, CAS.log, and ContentTransferManager.log.

    Step 5: After the download is completed, detection could be followed before installation. We could refer to UpdatesHandler.log,ScanAgent.log, UpdateStore.log, WindowsUpdate.log and WUAHandler.log.

    Step 6: Software update could be installed. We could refer to Windowsupdate.log and UpdatesDeployment.log.

    Step 7: After the updates are installed, Updates Deployment Agent checks whether any updates require a reboot, and then it notifies the user if client settings are configured to allow such notification. We could refer to UpdatesDeployment.log and UpdateStore.log.

    Here is an article about some detailed log screenshots, and about the answer of components, we could find it in this article:
    Using log files to track the software update deployment process


    If the response is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.