We currently use WSUS to distribute Microsoft patches and also use Solarwinds Patch Manager to push 3rd party patches into WSUS. This allows us to fully patch an endpoint with all MS and 3rd party software patches via Windows Update Agent/WSUS. We now have a fleet of laptops connected back to our Datacenter via a VPN and they are consuming a lot of bandwith during patching cycles.

We have the following challanges:

We do use some throttling on BITS/Delivery opitmization but have had mixed resultsWe have MECM but don’t use Cloud Management gatway as was deemed too expensive. we have not moved patching to MECM yet.If we use Windows Update for Business we cannot patch 3rd party updates and loose some control around pilot groups and reporting in our estimation

Q: So is there a way for us to continue to define the approved patches/metadata via WSUS but have the system pull the patches files from the internet (Windows Update) source? Perhaps this is possible with MECM?

​We currently use WSUS to distribute Microsoft patches and also use Solarwinds Patch Manager to push 3rd party patches into WSUS. This allows us to fully patch an endpoint with all MS and 3rd party software patches via Windows Update Agent/WSUS. We now have a fleet of laptops connected back to our Datacenter via a VPN and they are consuming a lot of bandwith during patching cycles.We have the following challanges: We do use some throttling on BITS/Delivery opitmization but have had mixed resultsWe have MECM but don’t use Cloud Management gatway as was deemed too expensive. we have not moved patching to MECM yet.If we use Windows Update for Business we cannot patch 3rd party updates and loose some control around pilot groups and reporting in our estimationQ: So is there a way for us to continue to define the approved patches/metadata via WSUS but have the system pull the patches files from the internet (Windows Update) source? Perhaps this is possible with MECM?  Read More

​