WSUS Product Team Blog

WSUS Product Team thoughts, information, tips and tricks and beyond :-)

Solution to KB2919355 preventing interaction with WSUS 3.2 over SSL

Solution to KB2919355 preventing interaction with WSUS 3.2 over SSL

  • Comments 19
  • Likes

A fix is now available from Microsoft that resolves the issue where some computers that have the KB 2919355 update for Windows 8.1 and Windows Server 2012 R2 installed stop scanning against Windows Server Update Services 3.0 Service Pack 2 (WSUS 3.0 SP2 or WSUS 3.2)-based servers that are configured to use HTTPS and do not have TLS 1.2 enabled. Direct download links, installation instructions, and more information you can use to check if you’re impacted by this issue, are provided on the KB 2959977 page.

  • If you manually imported KB 2919355 prior to the issue of KB 2959977, you should decline the old revision on your WSUS server. Once you decline the revision in WSUS, it will no longer be distributed to clients.

  • For all users (even if your environment was not impacted), we recommend that administrators approve the latest revision of KB 2919355 for distribution to enable deployment of Windows 8.1 Update in your environment.

  • Download links in the KB take you to the Downloads Center and searching on the KB number circles right back to previous page. Be nice to be able to download the actual package ;-)

  • my wsus 3.0 sp2 is not getting this KB 2919355 update till now ? is there a way to download it to wsus manually?

  • Im the same as albaraa an fix for this?////

  • it's available now

  • Update KB2959977 is only for old version KB2919355 and because of that update KB2959977 is not available over WSUS deploy. Is this correct??? because I dont have KB2959977 on wsus server.

  • yes, KB2959977 fix only the issue that Systems with old KB2919355 cannot talk to WSUS (without TLS 1.2)
    Therefore KB2959977 will not be available on WSUS, cause in this Situation WSUS will fail to deploy any Patch to such Clients anyway.

  • thank you

  • so if you have a 2003 R2 WSUS server that doesn't support TLS 1.2 protocol I will be forced to upgrade to 2008 or 2012 WSUS server? Thanks a lot Microsoft...

  • Hi, I want to deploy KB2919355 to a test computer group. When I run a computer report I see that the kb2919355 is set to Install but status is Not Applicable. The prerequisity updateKB2919442 is installed on each computer in my test WSUS group. Other WSUS updates are deployed without problem.
    I've also managed to install the kb2919355 on one of the computers manually using Windows8.1-KB2919355-x64.msu.
    Has anyone encountered similar problem, please?

  • I also found that KB2919355 seems not to be found as "needed" by WSUS for some Windows 8.1 and some 2012 R2 Systems (especially Hyper-V Server 2012 R2). So looks like some dection bug.
    Those Systems could install KB2919355 by file.

  • 127: could you please contact me so we can discuss the problem? My email is azarro(-at-)gmail(-dot-)com. Thanks!
    Maybe it has something to do with Hyper-V role, because we have it installed on each of the W8.1 machines..

  • After the latest iteration of KB2919355, all of my W8.1 are sending the desired "needed" status to WSUS and installing the update after approving, so it has somehow solved itself..

  • Hi Friends.........

    Please Help me... win 8.1 PC's not reporting to WSUS 2012r2 server...
    its reporting to WSUS console but not updating. last update date showing "Not yet Reported" ...

    How to Resolve this problem......????

  • WSUS role on Server 2012 R2 fails to configure. Why does MS make us try 10+ different possible causes and give no useful help to resolve this. Please please, a simple download that runs to troubleshoot and fix the problems please!

  • (TLS / Ciphers in Win7) (TLS / Ciphers in Vista)

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment