A couple of times a year I reset our desktops in WSUS. I delete them all from the console and then fire the below bat file at them. It forces them to get clean their SID's and reregister and redetect. Helps keep the list clean and things running pretty well. With this recent patch I am going to do it again but I am thinking of adding:
del /f /s /q %windir%\SoftwareDistribution\*.* Any thoughts on the above. I know that folder can sometimes cause issues so ditching it once in awhile seems like a good idea...Below is the original. The if exist txt file just stops the bat file from running more than once. I just increment the number on it the next time I do this.... if exist c:\wsus5.txt goto end echo %date% %time% >> c:\wsus5.txt reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate /v AccountDomainSid /f reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate /v PingID /f reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate /v SusClientId /f net stop wuauserv net start wuauserv wuauclt /resetauthorization /detectnow :end ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
