The title “Richard Got NAPd” was born back 2005 when I first joined Microsoft and participated in Microsoft’s 1st deployment rollout of System Center Configuration Managers 2007 Network Access Protection (NAP) which was a 3 year project. As a member of MSIT during this deployment, it gave me allot of insight into network intrusion protection and security compliance. So the title implies I that was intrigued by the integrated technology of Network Access Protection and systems management and compliance monitoring which consumed the first 3 years of my time at Microsoft.
I found a question that popped up a few times on discussions blogs:
Question:
I incorrectly configured the SUP on one of my remote sites and so all these clients are looking at the parent site for Software Updates. I've checked the WUAHandler.log and have seen the settings there. Now that I've got things correctly configured, I'm wondering how I can 'force' the clients to re-home to their local SUP instead. Do I need to reinstall the clients to apply the SCCM local policies for this?
Answer:
No you do not need to reinstall the clients. If clients are able to connect to the assigned MP, clients will automatically pick up the new WSUS URL and use it. Default ConfigMgr Site Policy interval is one hour. So after one hour your clients should re-home and use the new WSUS URL.
Also, if you want to ensure your clients use a WSUS URL of choice, you can use Active Directory GPO and apply the WSUS URL via policy. This will keep that clients homed to your WSUS server.
If you turn on WSUS/SUP Client Installation, This can also be automated so the client will auto re install if the client is uninstalled. WSUS will put the client back on the system by treating the ConfigMgr client like a critical update.
About Richard Dixon
I’ve worked in the field of Systems Management since 1990, performing integration and automation through the use of Microsoft technologies such as System Center Configuration Manager 2007, Operations Manager, Service Manager, SQL Server 2008 & Reporting Services, Visual Studio, and SharePoint with InfoPath Integration. I am proficient on SCCM, Microsoft's Hyper V Virtualization technology, and Failover Clustering & Network Load Balancer Services. I have also worked extensively with SCCM Network Access Protection and enjoy learning new technologies. I am also a Microsoft Partner. I started work at Microsoft in 2005 in the SMS/SCCM team of MSIT, which later became the Management Platforms & Services Delivery group in the Management Services division. In MPSD I managed our Lab, Preproduction & Production environments using Microsoft's Hyper V technology. These environments support several SCCM infrastructures which include the management of 200,000 managed desktops across Microsoft. Prior to working at Microsoft I worked for Warner Bros/AOL Time Warner, NBC Studios, AT&T WorldNet Service, 24 Hour Fitness, State of California Health Department, Northrop Grumman, NOS Communications, GE Capital, KLA Tencor, Wells Fargo Mortgage Bank, Dudeworks, TeleTech, and TekSystems.
Specialties:System Center Configuration Manager 2007, Service Manager, Virtual Machine Manager 2007 R2, Operations Manager 2007 R2, Hyper V, SQL Server, Scripting, Visual Studio, SharePoint Services and InfoPath Integrations and Systems Center Essentials.