Still Using WSUS? Here’s a Quick Fix (and Prevention!) for Potential WSUS Woes

Fifteen years ago, if you had Active Directory, it was very likely you also had a WSUS (Windows Server Update Services) server as well. WSUS is available as a role to be installed on any Windows Server operating system at no extra cost. Its main purpose is to house Microsoft updates for the Windows operating system and other Microsoft products. This way, when computers on the network start to download the updates, they can just pull them across the local LAN connection instead of downloading the update for as many times as you have computers needing it. It also does light accounting for which machines have which updates installed on them and what updates they may be deficient in. The last selling point would be for larger environments where you may have a staging environment along with a production environment. With WSUS, you could approve and test new updates from Microsoft on your staging environment before pushing those same updates out to your production environment.

However, with prices of broadband going down and the work force not always coming into the office to work, having WSUS in your environment isn’t a given any longer. Also, there isn’t much benefit to WSUS if you are not going to be actively managing it. I have done more work removing WSUS from environments lately than installing it in new environments. However, one environment chose to use WSUS only for the tracking of updates, not for the repository of updates. When I configured WSUS for them, I came across an issue. After it was set up, about every few days, when launching the WSUS console, I would get the dreaded error with WSUS with the fix that never fixes WSUS—Reset Server Node.

WSUS troubleshooting

The error is very optimistic that simply clicking this button will resolve all the issues, and the console will just load as it should. I don’t believe I’ve ever had that work, although I always click the button a few times just to see if it will magically work this time.

WSUS runs on IIS (Internet Information Services), the Microsoft web server. Inside of IIS, it runs off an application pool called WsusPool. If something stops this application pool, the console to WSUS will not connect. In my case, the application pool stopped.

WSUS troubleshooting

Simply starting the application pool would make WSUS responsive again, but in two or three days, the application pool would stop again.

WSUS troubleshooting

The problem turned out to be that the WSUS application pool was using too much memory, which caused it to shut itself down. The fix is right here in IIS. Right click the pool and go to Advanced Settings.

WSUS troubleshooting

Scroll down to find Private Memory Limit (KB) in the Recycling section. Previously this was about 1.8GB, which doesn’t take WSUS that long to use when it is synchronizing and automatically approving many updates. If all this server is doing is WSUS, you can comfortably change the value to 0 (no limit).

WSUS troubleshooting

If you find yourself deploying WSUS, go ahead and make this change to the application pool from the start and save yourself some troubleshooting time.

Have any other WSUS troubleshooting questions? Do not hesitate to contact us at any time.

By |2019-04-08T09:05:17+00:00April 8th, 2019|Information Technology, Technology, Tips & Tricks|0 Comments

About the Author:

Craig Schellenberg
Craig Schellenberg is a Senior Network Consultant at Sikich that works with businesses to improve their IT. Being detail oriented assists in his ability to design and deploy new solutions as well as troubleshoot complex issues. His primary areas of focus are virtualization and storage on premise (whether through VMware vSphere or Microsoft Hyper-V), Microsoft Cloud services such as Azure and Office 365, Microsoft SQL design and administration, backup/DR/Business Continuance, and network route/switch/firewalls. Craig holds many certifications including his MCSE (Microsoft Certified Solutions Expert) in Productivity, Messaging, and Cloud Platform and Infrastructure. Craig also holds multiple certifications of his VCP (VMware Certified Professional) including version 3, 4 (Data Center Virtualization), 5 (Data Center Virtualization), 5 (Desktop), Cloud, and 6 (Data Center Virtualization).
This material has been prepared for general informational purposes only and is not intended to be relied upon as accounting, tax, or other professional advice. Please refer to your advisors for specific advice.

Privacy Information

We use cookies to personalize the website for you and to analyze the use of our website. Click 'Privacy Options' to configure how we can interact with you and your device or computer.

Privacy policy | Close
private equity services construction accountants Agriculture Services Construction Services Non-Profit Services Government Services