WAPT SERVER : Debian 11 / WAPT 2.4
Console Administrator: Windows 10
Hello, I'm planning to test Windows Updates with WAPT instead of WSUS. Several questions come to mind.
WUA Questions:
- Can Windows updates be stored in a repository?
- When creating a WUA rule allowing, for example, 'critical' updates, does WAPT automatically add the new updates to the rule?
- Can machines that shouldn't perform any Windows Updates be excluded? GPO?
Another question:
- Can a system be decommissioned with WAPT?
Thank you; Best
regards
WUA & Questions
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
-
sfonteneau
- WAPT Expert
- Messages: 2318
- Registered: July 10, 2014 - 11:52 PM
- Contact :
Currently, the WAPT server downloads the missing CABs and places them in /var/www/waptwua. If you have secondary repositories, this folder is replicated. Could you please provide the exact requirements behind your question so we can better answer?
No, however, on the agent you can put the following in the wapt-get.ini file:
Code: Select all
[waptwua]
allowed_severities= Important, Critical
Simply enable waptwua with default_allow=False and do not allow any cabs on this machine
I didn't quite understand the question.
Thank you very much for your replies.
Storing them in a repository will save space on our WAPT server.
[waptwua]
allowed_severities= Important, Critical.
Could you elaborate further? Is the agent you're referring to the WAPT server? Assuming so, then critical or important updates will be installed automatically by all clients?
Regarding "decommissioning," thanks to the reporting, I've identified workstations that have been inactive for at least a year in order to remove them from WAPT. I'm wondering if it's possible, via WAPT, to have a workstation removed from Active Directory and GLPI when it's deleted?
Thank you very much and have a good afternoon.
Storing them in a repository will save space on our WAPT server.
[waptwua]
allowed_severities= Important, Critical.
Could you elaborate further? Is the agent you're referring to the WAPT server? Assuming so, then critical or important updates will be installed automatically by all clients?
Regarding "decommissioning," thanks to the reporting, I've identified workstations that have been inactive for at least a year in order to remove them from WAPT. I'm wondering if it's possible, via WAPT, to have a workstation removed from Active Directory and GLPI when it's deleted?
Thank you very much and have a good afternoon.
-
sfonteneau
- WAPT Expert
- Messages: 2318
- Registered: July 10, 2014 - 11:52 PM
- Contact :
You can ask the wapt server not to download the cab files, but then you will have to do it in a separate script to put them on a repo.
It's not very useful for us, for example, with a lot of diversity, the waptwua repo represents 20 gigabytes.
No, it's directly on the park's Wapt agents:
https://www.wapt.fr/fr/doc/wapt-console ... wapt-agent
We did not plan for this type of operation.rcharpeil wrote: ↑Nov 28, 2023 - 2:37 PM Regarding "decommissioning," thanks to the reporting, I've identified workstations that have been inactive for at least a year with a view to removing them from WAPT. I'm wondering if it's possible, via WAPT, to have a workstation removed from Active Directory and GLPI when it's deleted?
Thank you very much and have a good afternoon.
Removing an item from inventory is a process specific to each organization; it is not advisable to want the process within the product itself.Regarding "decommissioning," thanks to the reporting, I've identified workstations that have been inactive for at least a year in order to remove them from WAPT. I'm wondering if it's possible, via WAPT, to also remove a workstation from Active Directory and GLPI when it's deleted?
Thank you very much and have a good afternoon.
However, you can create your own inventory output package and script what needs to be done when the package is applied to a workstation.
Vincent CARDON
Tranquil IT
Tranquil IT
Thank you for your replies. Regarding WUA, I understand how to exclude it. However, I have another issue: I modified my WAPT policy (generate an agent tab) by adding Windows Updates (which were previously disabled). When checking my agent configuration, I noticed that those that were already configured before the policy change are not updating.
- Attachments
-
- 2023-11-29 14_24_43-AdminWAPT - VMware Workstation.png (9.8 KB) Viewed 7198 times
-
- 2023-11-29 14_23_41-AdminWAPT - VMware Workstation.png (10.32 KB) Viewed 7198 times
-
sfonteneau
- WAPT Expert
- Messages: 2318
- Registered: July 10, 2014 - 11:52 PM
- Contact :
Indeed, when you generate an agent, it generates a WaptUpgrade package.
However, the WaptUpgrade package does not update if the version is already correct on the agent.
Therefore, you can either generate configuration packages and apply them,
or perform a forced installation on the machines.
However, the WaptUpgrade package does not update if the version is already correct on the agent.
Therefore, you can either generate configuration packages and apply them,
or perform a forced installation on the machines.
