Nope not from my testing they can't even local admins will have issues trying to install un-approved patches/updates. Possible but difficult.
Jon On Sun, Apr 18, 2010 at 5:20 PM, Carl Houseman <[email protected]> wrote: > OK, I wasn't thinking about the "check Microsoft" choice in the Windows > Update app. What I read from your prior reply was that local admins had a > way of installing unapproved patches from the WSUS server. > > Carl > ------------------------------ > *From:* Jon Harris [mailto:[email protected]] > *Sent:* Sunday, April 18, 2010 2:15 PM > > *To:* NT System Admin Issues > *Subject:* Re: Installing Patches on Windows 7 when logged in as user not > administrator > > Nope you can get it to look at the Microsoft site if you are the local > admin. I have done it many times during testing but only the local admin > can get it to do that and only the local admin will be able to try > installing those updates. I don't have my notes any more but users can > install updates supplied by WSUS without issue. > > Jon > > On Sun, Apr 18, 2010 at 11:27 AM, Carl Houseman <[email protected]>wrote: > >> ?? Even a local administrator won't see patches in a WSUS environment >> unless they're approved/authorized in WSUS. >> >> Carl >> >> ------------------------------ >> *From:* Jon Harris [mailto:[email protected]] >> *Sent:* Sunday, April 18, 2010 12:26 AM >> *To:* NT System Admin Issues >> *Subject:* Re: Installing Patches on Windows 7 when logged in as user not >> administrator >> >> I have used this config and know that the user can install any patches >> you have authorized in WSUS and will not see any others without manually >> changing to the local administrator profile. Much nicer than Vista. >> >> Jon >> >> On Fri, Apr 16, 2010 at 5:12 PM, Andrew S. Baker <[email protected]>wrote: >> >>> You can use WSUS with the systems configured to install the patches, and >>> all the user would control (if you desire), is when they get to reboot. >>> >>> Doesn't matter whether they have admin rights or plain old user rights. >>> >>> -ASB: http://XeeSM.com/AndrewBaker <http://xeesm.com/AndrewBaker> >>> >>> >>> On Fri, Apr 16, 2010 at 5:07 PM, System Manager <[email protected]>wrote: >>> >>>> We are planning on deploying Windows 7 64-bit on staff computers and >>>> having them log in as user not as an administrator. If they attempt to >>>> install Windows patches, they are prompted for the Administrator password, >>>> which they do not know. Is there a way I can allow users to install >>>> Windows >>>> patches? Do any of the patch management software packages solve this >>>> problem? >>>> >>>> -- >>>> Kevin Kelly >>>> Director, Network Technology >>>> Whitman College >>> >>> >> >> >> >> > > > > > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
