question

TechUser2020-6505 avatar image
0 Votes"
TechUser2020-6505 asked OttenLuke-6374 commented

Blocking Windows Updates, but allowing ctldl.windowsupdate.com

Hi,
We've blocked Windows updates on our firewall using *.windowsupdate.com, but this also blocks "ctldl.windowsupdate.com" - I believe the latter URL is only used for CRLs, am I right in thinking if we allow the CRL URL only, it doesn't allow Windows Update?

Essentially, we want to allow clients the ability to update their CRLs, but not use Windows updates as we want to stop uncontrolled updates (we use SCCM for managed updates).

We need ctldl.windowsupdate.com to successfully roll out ATP and to ensure that CRLs updated, but we do not want to allow servers to update over the internet.

Thanks
Pete

windows-server-update-services
· 2
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

JeannetteAnderson-4130 avatar image JeannetteAnderson-4130 ·

I need this question answered also.

0 Votes 0 ·
OttenLuke-6374 avatar image OttenLuke-6374 ·

Looking for an answer to this also

0 Votes 0 ·

0 Answers