RE: Windows Update

  • From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Thu, 13 Jan 2005 06:24:18 -0800

Can you include your ISAInfo and a log showing the failing tests?

  Jim Harrison
  MCP(NT4, W2K), A+, Network+, PCG
  http://isaserver.org/Jim_Harrison/
  http://isatools.org
  Read the help / books / articles!
 
 
-----Original Message-----
From: Aman Bedi [mailto:gurkirpal.bedi@xxxxxxxxxxx] 
Sent: Wednesday, January 12, 2005 4:41 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Windows Update

http://www.ISAserver.org


 

Tom, 

 

I have disabled IE in firewall client settings to force users to use
proxy ( for surf control )

Do you think this can be the problem. 

If I have MS site for direct access, can it still authenticate during
updates when IE is disabled in firewall client settings ?

 

 


Aman Bedi | Systems/Network Administrator (MCP, MCSD, MCSA 2000, MCSA
2003)
54 West 39th Street, 4th Floor, New York, NY 10018 | Fax +1(212)
202-4318 | Phone +1(212) 278-0178 ext 234 | www.scanbuy.com 

PRIVILEGED & CONFIDENTIAL 
The information contained in this email message is intended only for use
of the person or entity to whom it is addressed. The contained
information is CONFIDENTIAL and LEGALLY PRIVILEGED and exempt from
disclosure under applicable laws. If you read this message and are not
the addressee, you are notified that use, dissemination or reproduction
of this message is prohibited. If you have received this message in
error, please notify the sender immediately.
------------------------------------------------------------------------
------------------------------------------------------------------------
---------------------------------------------

________________________________

From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx] 
Sent: Wednesday, January 12, 2005 7:13 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Windows Update

 

http://www.ISAserver.org

Hi Aman,

 

When MS.com is on the Direct Access list, it wll bypass the Web proxy
and using other methods to access the site. Since you're using best
practices, you have deployed the Firewall client, and so you can still
authenticate with the ISA firewall, and you can access the WU site. I've
never had a problem getting to the WU site, because the site is
configured for Direct Access.

 

HTH,

Tom

 

________________________________

From: Aman Bedi [mailto:gurkirpal.bedi@xxxxxxxxxxx] 
Sent: Wednesday, January 12, 2005 5:38 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Windows Update

http://www.ISAserver.org

Hi Jim and All

 

Jim, you have an article here 

 

http://msmvps.com/bradley/archive/2004/09/04/13009.aspx by Jim "Mr. Isa"
Harrison

 

which describes how to solve problem accessing windows update.

I was facing this problem, and my computers were not able to update
using automatic updates and even when I go to windows update page and
select custom, I was getting an error "time and date do not match...."

 

I had Microsoft.com in my direct access list on isa server.

Today while testing and try to make the updates work according to your
article , I started playing a little. I tried to remove Microsoft.com
from the direct access list and to my surprise windows update site
started to work. I am using firewall./ proxy clients and I tested this
with SNAT clients too. 

 

I still have the "Global Authentication" for web proxy clients ON. 

 

I am confused here. I had tried all that earlier without bypassing MS
site earlier , but updates never worked. How come suddenly it starts to
work and that too with global authentication on in web proxy clients.

 

 

Am I missing something ?  Its ISA 2004 on windows 2003

I didn't even do the IE settings yet in the registry as described in the
article. 

I still have to test Automatic updates, but I think when updates page
has started to work, that will work too. 

 

Please comment.

 

 

 

Aman Bedi | Systems/Network Administrator (MCP, MCSD, MCSA 2000, MCSA
2003)
54 West 39th Street, 4th Floor, New York, NY 10018 | Fax +1(212)
202-4318 | Phone +1(212) 278-0178 ext 234 | www.scanbuy.com 

PRIVILEGED & CONFIDENTIAL 
The information contained in this email message is intended only for use
of the person or entity to whom it is addressed. The contained
information is CONFIDENTIAL and LEGALLY PRIVILEGED and exempt from
disclosure under applicable laws. If you read this message and are not
the addressee, you are notified that use, dissemination or reproduction
of this message is prohibited. If you have received this message in
error, please notify the sender immediately.
------------------------------------------------------------------------
------------------------------------------------------------------------
---------------------------------------------

 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
gurkirpal.bedi@xxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

All mail to and from this domain is GFI-scanned.

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 01-2005