Azure Update Manager not triggering updates

Jesper Thorup 0 Reputation points
2024-09-23T13:14:14.8866667+00:00

We currently have all our on-prem servers in Azure Arc, and are usning Azure Update Manager to mange windows updates.

I have divided the servers using tags.

I have two update configurations, using dynamic scopes (based on the tags).

The one configurations, seems to be working fine, accesses updates, and installing them when the schedule tells them to.

But the other configuration, seems to miss the part where it installs the updates. It accesses and find the relevant updates, but nothing happens when the time in the schedule is reached.

It was suppose to install updates 09/23/2024 00:00:00 but nothing happens, and no indication of what went wrong. Checking the servers, I can see the updates ready to bee installed.

Can anyone point me in some direction as what to look for?

Azure Arc
Azure Arc
A Microsoft cloud service that enables deployment of Azure services across hybrid and multicloud environments.
457 questions
Azure Update Manager
Azure Update Manager
An Azure service to centrally manages updates and compliance at scale.
329 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Pratheep Sinnathurai 1 Reputation point MVP
    2024-12-02T09:59:06.17+00:00

    I have experience this Issue once as well in a Customer Environment. I needed to "reset" the Windows Update Policies on that specific Machine.

    For this you can run the following PowerShell Script

    # Define the path to the registry key
    $registryPath = "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU"
    
    # Check if the registry path exists
    if (-not (Test-Path $registryPath)) {
        # Create the registry path
        New-Item -Path $registryPath -Force | Out-Null
    }
    
    # Define the new values for the properties
    $settings = @{
        "AllowMUUpdateService" = 1
        "AUOptions" = 3
        "NoAutoUpdate" = 0
        "ScheduledInstallDay" = 0
        "ScheduledInstallEveryWeek" = 1
        "ScheduledInstallTime" = 3
    }
    
    # Set the new values for the properties
    foreach ($setting in $settings.GetEnumerator()) {
        Set-ItemProperty -Path $registryPath -Name $setting.Key -Value $setting.Value
    }
    
    

    I assume you have set the following two Azure Policies:

    https://www.azadvertizer.net/azpolicyadvertizer/bfea026e-043f-4ff4-9d1b-bf301ca7ff46.html

    https://www.azadvertizer.net/azpolicyadvertizer/bd876905-5b84-4f73-ab2d-2e7a7c4568d9.html

    More Details on my Blog Article:

    https://blog.sinnathurai.ch/azure-update-manager-how-do-i-scope-my-servers-to-a-maintenance-configuration-c6b01545a3e9

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.