Knowledge Base - Publishing patches from Microsoft SCUP to WSUS!

Description

This document explains the steps to publish patches from Microsoft SCUP to update server(WSUS).

Steps

  1. Open SCUP and select Options.

    wsus server

  2. Enabling SCUP to publish updates

  3. Select Update Server, enable the option "Enable publishing to an update server".
  4. If SCUP is installed on the same machine where WSUS is installed select "Connect to local update server" else select "Connect to a remote update server" and specify the ConfigMgr server details.

    wsus server

  5. Click on test connection and click OK.
  6. After successfully establishing connection, you can either create a Self-Signed certificate or import an already existing certificate to sign third-party patches.

    Note: If you are using an existing certificate ensure that the certificate intended purpose has "Coding Signing" 

  7. Integrating SCUP with ConfigMgr

  8. Select ConfigMgr server enable the option "Enable Configuration Manager Integration"

    wsus server

  9. If ConfigMgr is installed on the same machine where SCUP is installed select "Connect to local configuration manager server" else select "Connect to a remote configuration manager server" and specify the ConfigMgr server details.
  10. Click on test connection and click OK.
  11. Configure proxy to download the binaries from the vendor sites.

    wsus server

  12. Publishing the updates to Update Server

  13. Open SCUP, under overview select the required updates and click Publish. "Publish Software Update Wizard" will open. Select Full content and click Next.

    wsus server

  14. After successful publish, you can view the published patches in the overview.

    wsus server

You have now successfully published the patches to update server.

Steps to view published patches in SCCM console

Steps to Deploy the published patches using SCCM

Keywords: Third-party Patch Management, Publish Patches to WSUS, Microsoft SCUP