“Am I right that I would need 3 GPOs, each filtering to a different AD group, and each set to initiate patching and rebooting during a different time frame?”
Correct, if you want to split them out to separate times. Tony Kibble From: [email protected] [mailto:[email protected]] On Behalf Of Michael Leone Sent: 16 May 2017 20:31 To: Patch Management Mailing List <[email protected]>; [email protected] Subject: [NTSysADM] Advice: how best to stagger scheduled WSUS-supplied patches I use a WSUS v3 server for patching for my other servers (no workstations). I have a GPO that filters on AD group membership to download patches (not apply; we manually apply the patches at a scheduled date. There used to be good reasons for manual patching ...) Used to be ... Now, what I want is automate it. I want my WSUS server to initiate the patch and reboot at a certain date and time frame, and I'd ideally like to do it via AD group membership, the way I do now. So that instead of 120 servers all patching and rebooting between 10AM - 5PM (for example), I can have a group of 40 do it from 10AM - 1PM, based on group membership; other groups for 1PM-3PM, and 3PM-5PM. Mostly for the control. Am I right that I would need 3 GPOs, each filtering to a different AD group, and each set to initiate patching and rebooting during a different time frame? Or should I just let them all patch and reboot, at anytime from 10AM-3PM on the scheduled date? Or is there a better way? Thanks ________________________________ DISCLAIMER This material has been checked by us for computer viruses and, although none has been found, we cannot guarantee that it is completely free from such problems and we do not accept liability for loss or damage which may be caused. This message is intended only for use of the individual or entity to whom it is addressed and may contain information which may be privileged and confidential. If you are not the intended recipient you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this e-mail in error, please notify the sender immediately via e-mail and delete the message. Thank you. ******************************************************* Travelers Insurance Company Limited is authorised by the Prudential Regulation Authority and regulated by the Financial Conduct Authority in the UK and is regulated by the Central Bank of Ireland for conduct of business rules. Registered in England 1034343. Registered as a branch in Ireland 903382. Travelers Syndicate Management Limited is authorised by the Prudential Regulation Authority and regulated by the Financial Conduct Authority and the Prudential Regulation Authority. Registered in England 03207530. Travelers Underwriting Agency Limited is authorised and regulated by the Financial Conduct Authority. Registered in England 03708247. Travelers Professional Risks Limited is an appointed representative of Travelers Insurance Company Limited which is authorised by the Prudential Regulation Authority and regulated by the Financial Conduct Authority and the Prudential Regulation Authority. Registered in England 05201980 Travelers Management Limited. Registered in England 00972175. The registered offices for all companies listed above is: Exchequer Court, 33 St Mary Axe, London, EC3A 8AG. All other branch offices are available from our websites. travelers.co.uk travelers.ie Issues to: mailto: [email protected] ________________________________ This communication, including attachments, is confidential, may be subject to legal privileges, and is intended for the sole use of the addressee. Any use, duplication, disclosure or dissemination of this communication, other than by the addressee, is prohibited. If you have received this communication in error, please notify the sender immediately and delete or destroy this communication and all copies. TRVDiscDefault::1201
