Hello,
currently we have the following problem that a fresh installed windows 7 SP 1 OS doesn't trust the signature of the newest "wsusscn2.cab" anymore. An already full patched Windows 7 client doesn't have any problem with it.
We get the following error: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
I noticed, that Microsoft shutdown the SHA1 signature of the cab-file this month, so this seems to be the problem.
I already tried to install KB4474419 and KB4490628 according to this website: https://support.microsoft.com/en-us/help/4472027/2019-sha-2-code-signing-support-requirement-for-windows-and-wsus
I think there are some more updates missing that this will work again.
I test the cab-file with this vb-script. https://docs.microsoft.com/en-us/windows/win32/wua_sdk/using-wua-to-scan-for-updates-offline
Does anybody know a solution for this problem?
Thank you in advance :)