Discussion:
WSUS Clients not Appearing
(too old to reply)
Bill Glidden
2006-04-28 02:03:46 UTC
Permalink
I have Googled and looked at threads here but still can't see why this new
install of WSUS has a problem adding clients to the admin console. I have
installed WSUS at three different sites and this is the first one to have
this problem. The admin console is working fine and I have synchronised with
Microsoft. The SBS 2003 SP1 Prem Edition is fully patched. ISA 2004 SP2,
SQL 2000 SP4, Exchange 2003 SP1. I have followed:
"Step-by-Step Guide to Getting Started with Microsoft Windows Server Update
Services on Windows Small Business Server 2003
Microsoft Corporation
Published: December 2005 (Version 2)
Author: Tim Elhajj"
The install completed without errors. I have checked RSOP on workstations
and can see the Group Policy has been applied. I can also connect to
http://servername:8530/wsusadmin from the workstations. I get "HTTP Error
403 - Forbidden" if I try to connect to http://servername:8530 > I have
checked and rechecked the settings for the Default Web Site\ClientWebService
& Selfupdate. Both are set for anonymous access and all computers are
granted access. What could possibly be wrong?
Internet Explorer
Bill Glidden
2006-04-28 02:11:49 UTC
Permalink
Forgot to mention that all client PCs are XP Pro SP2.
Post by Bill Glidden
I have Googled and looked at threads here but still can't see why this new
install of WSUS has a problem adding clients to the admin console. I have
installed WSUS at three different sites and this is the first one to have
this problem. The admin console is working fine and I have synchronised
with Microsoft. The SBS 2003 SP1 Prem Edition is fully patched. ISA 2004
"Step-by-Step Guide to Getting Started with Microsoft Windows Server
Update Services on Windows Small Business Server 2003
Microsoft Corporation
Published: December 2005 (Version 2)
Author: Tim Elhajj"
The install completed without errors. I have checked RSOP on workstations
and can see the Group Policy has been applied. I can also connect to
http://servername:8530/wsusadmin from the workstations. I get "HTTP Error
403 - Forbidden" if I try to connect to http://servername:8530 > I have
checked and rechecked the settings for the Default Web
Site\ClientWebService & Selfupdate. Both are set for anonymous access and
all computers are granted access. What could possibly be wrong?
Internet Explorer
Lawrence Garvin (MVP)
2006-04-29 04:08:16 UTC
Permalink
I get "HTTP Error 403 - Forbidden" if I try to connect to
http://servername:8530
'403' errors are caused by proxy servers and firewalls blocking access to
the requested resource, usually as a result of a deny rule, or the absence
of an allow rule.
--
Lawrence Garvin, M.S., MVP-Software Distribution
Everything you need for WSUS is at
http://technet2.microsoft.com/windowsserver/en/technologies/featured/wsus/default.mspx
And, eveything else is at
http://wsusinfo.onsitechsolutions.com
...
Bill Glidden
2006-04-29 04:51:38 UTC
Permalink
Hi Lawrence,

I have since discovered that it is normal to get that HTTP error if one
tries to open http://sbsserver:8530/ and therefore has no diagnostic value.
The WSUS Client Diagnostics Tool returns:

Checking Machine State
Checking for admin rights to run tool . . . . . . . . . PASS
Automatic Updates Service is running. . . . . . . . . . PASS
Background Intelligent Transfer Service is not running. PASS
Wuaueng.dll version 5.8.0.2469. . . . . . . . . . . . . PASS
This version is WSUS 2.0

Checking AU Settings
AU Option is 3 : Notify Prior to Install. . . . . . . . PASS
Option is from Policy settings

Checking Proxy Configuration
Checking for winhttp local machine Proxy settings . . . PASS
Winhttp local machine access type
<Direct Connection>
Winhttp local machine Proxy. . . . . . . . . . NONE
Winhttp local machine ProxyBypass. . . . . . . NONE
Checking User IE Proxy settings . . . . . . . . . . . . PASS
User IE Proxy
w2ksvr1:8080
User IE ProxyByPass
<local>
User IE AutoConfig URL Proxy
http://w2ksvr1:8080/array.dll?Get.Routing.Script
User IE AutoDetect
AutoDetect in use

Checking Connection to WSUS/SUS Server
WUServer = http://w2ksvr1:8530
WUStatusServer = http://w2ksvr1:8530
UseWuServer is enabled. . . . . . . . . . . . . . . . . PASS

VerifyWUServerURL() failed with hr=0x80072ee5

The URL is invalid

I have checked and rechecked the URL and it is correct...

Does this help?

Cheers,
Bill
Post by Lawrence Garvin (MVP)
I get "HTTP Error 403 - Forbidden" if I try to connect to
http://servername:8530
'403' errors are caused by proxy servers and firewalls blocking access to
the requested resource, usually as a result of a deny rule, or the absence
of an allow rule.
--
Lawrence Garvin, M.S., MVP-Software Distribution
Everything you need for WSUS is at
http://technet2.microsoft.com/windowsserver/en/technologies/featured/wsus/default.mspx
And, eveything else is at
http://wsusinfo.onsitechsolutions.com
...
Bill Glidden
2006-04-29 07:33:44 UTC
Permalink
Hi Lawrence,

I have spent several hours searching the net for solutions for my specific
set of conditions:

1. No WSUS clients ever appear in WSUS Admin
2. None of the many suggested client-side checks fail (except for 3. below)
3. All clients (incuding the WSUS server itself) return the following error
when the WSUS Client Diagnostics Tool is run against them returns the
following

Checking Machine State
Checking for admin rights to run tool . . . . . . . . . PASS
Automatic Updates Service is running. . . . . . . . . . PASS
Background Intelligent Transfer Service is not running. PASS
Wuaueng.dll version 5.8.0.2469. . . . . . . . . . . . . PASS
This version is WSUS 2.0

Checking AU Settings
AU Option is 3 : Notify Prior to Install. . . . . . . . PASS
Option is from Policy settings

Checking Proxy Configuration
Checking for winhttp local machine Proxy settings . . . PASS
Winhttp local machine access type
<Direct Connection>
Winhttp local machine Proxy. . . . . . . . . . NONE
Winhttp local machine ProxyBypass. . . . . . . NONE
Checking User IE Proxy settings . . . . . . . . . . . . PASS
User IE Proxy
w2ksvr1:8080
User IE ProxyByPass
<local>
User IE AutoConfig URL Proxy
http://w2ksvr1:8080/array.dll?Get.Routing.Script
User IE AutoDetect
AutoDetect in use

Checking Connection to WSUS/SUS Server
WUServer = http://w2ksvr1:8530
WUStatusServer = http://w2ksvr1:8530
UseWuServer is enabled. . . . . . . . . . . . . . . . . PASS

VerifyWUServerURL() failed with hr=0x80072ee5

The URL is invalid

Every thread I have followed for the above set of conditions has been
unresolved. I am beginning to think that WSUS is not going to work for this
server :-(

Cheers,
Bill
Post by Lawrence Garvin (MVP)
I get "HTTP Error 403 - Forbidden" if I try to connect to
http://servername:8530
'403' errors are caused by proxy servers and firewalls blocking access to
the requested resource, usually as a result of a deny rule, or the absence
of an allow rule.
--
Lawrence Garvin, M.S., MVP-Software Distribution
Everything you need for WSUS is at
http://technet2.microsoft.com/windowsserver/en/technologies/featured/wsus/default.mspx
And, eveything else is at
http://wsusinfo.onsitechsolutions.com
...
Mohammed Athif
2006-04-29 11:41:43 UTC
Permalink
Hi,
What happens if you disable IE AUTOCONFIGURATION SCRIP -
http://w2ksvr1:8080/array.dll?Get.Routing.Script

Happy Patching,
Mohammed Athif Khaleel
http://msmvps.com/athif
Bill Glidden
2006-04-29 12:17:33 UTC
Permalink
Hi Athif,

How do I do this?

Cheers,
Bill
Post by Mohammed Athif
Hi,
What happens if you disable IE AUTOCONFIGURATION SCRIP -
http://w2ksvr1:8080/array.dll?Get.Routing.Script
Happy Patching,
Mohammed Athif Khaleel
http://msmvps.com/athif
Bill Glidden
2006-04-30 01:54:51 UTC
Permalink
Hi Mohammed,

Do you mean uncheck 'Use automatic configuration script' in IE LAN
Settingson the clients? The WSUS server itself does not have this setting
checked, is not using the proxy at all, and it does not check in with WSUS
either. I will check one of the workstations just to be sure and report
back, but it looks like this may not make a difference.

Cheers,
Bill
Post by Mohammed Athif
Hi,
What happens if you disable IE AUTOCONFIGURATION SCRIP -
http://w2ksvr1:8080/array.dll?Get.Routing.Script
Happy Patching,
Mohammed Athif Khaleel
http://msmvps.com/athif
Bill Glidden
2006-04-30 03:16:01 UTC
Permalink
Hi Mohammed,

I just checked out your blog and saw the item titled
Are there any known issues if WSUS is installed on OWA Server?

Given that this WSUS is installed on a SBS 2003 server which is also an OWA
server does the SSL issue apply in my situation?

Cheers,

Bill
Post by Mohammed Athif
Hi,
What happens if you disable IE AUTOCONFIGURATION SCRIP -
http://w2ksvr1:8080/array.dll?Get.Routing.Script
Happy Patching,
Mohammed Athif Khaleel
http://msmvps.com/athif
Bill Glidden
2006-04-30 03:40:14 UTC
Permalink
OK. I checked and neither ClientWebService nor Selfupdate under Default Web
Site require SSL.
Post by Bill Glidden
Hi Mohammed,
I just checked out your blog and saw the item titled
Are there any known issues if WSUS is installed on OWA Server?
Given that this WSUS is installed on a SBS 2003 server which is also an
OWA server does the SSL issue apply in my situation?
Cheers,
Bill
Post by Mohammed Athif
Hi,
What happens if you disable IE AUTOCONFIGURATION SCRIP -
http://w2ksvr1:8080/array.dll?Get.Routing.Script
Happy Patching,
Mohammed Athif Khaleel
http://msmvps.com/athif
Lawrence Garvin (MVP)
2006-04-30 19:14:20 UTC
Permalink
Post by Bill Glidden
Given that this WSUS is installed on a SBS 2003 server which is also an
OWA server does the SSL issue apply in my situation?
This is extremely critical information, and it would have been helpful if
you'd included it in the original post.
Post by Bill Glidden
'403' errors are caused by proxy servers and firewalls blocking access to
the requested resource, usually as a result of a deny rule, or the absence
of an allow rule.
Then, I'm going to point you to the report from the CDT about your proxy
config:
Checking Proxy Configuration
Checking for winhttp local machine Proxy settings . . . PASS
Winhttp local machine access type
<Direct Connection>
Winhttp local machine Proxy. . . . . . . . . . NONE
Winhttp local machine ProxyBypass. . . . . . . NONE
Checking User IE Proxy settings . . . . . . . . . . . . PASS
User IE Proxy
w2ksvr1:8080
User IE ProxyByPass
<local>
User IE AutoConfig URL Proxy
http://w2ksvr1:8080/array.dll?Get.Routing.Script
User IE AutoDetect
AutoDetect in use

1. You're using AutoDetect. WinHTTP doesn't pick up autodetect settings.

2. The output is quite plain that WinHTTP is not using a proxy server at
all.

3. The proxy server you have your client directed to /IS/ the same machine
as the WSUS server, which, you tell us in another post is the SBS2003
server!
(a) Why do you have IE configured to talk to the proxy server on the
SBS2003 system?
(b) If WinHTTP is not talking to that proxy server, are you sure it can
get to the WSUS service otherwise?
(c) You cannot 'clone' the IE settings to WinHTTP, because of the proxy
URL, which WinHTTP will not be able to deal with (assuming you need the
proxy).
(d) I'm guessing, because of the use of the proxy, that you're still
running ISA2000 on this SBS2003 system. (If so, any reason you've not
applied SP1 and upgraded to ISA2004?) (If I'm wrong in my assumption, then
just ignore this note. I'm merely making a semi-educated guess.)

By definition, the SBS2003 server running ISA cannot talk to any external
device unless first a rule is created to permit the "Local Host" to
communicate with that external device.

Also, unless you've configured sufficient rules to permit the SBS2003 to
talk to its own WSUS server without going through the proxy, you'll need to
use the proxycfg.exe utility to properly configure the WinHTTP proxy client.

Finally, your error has changed. Now the CDT is giving you a '2ee5' error
which is an invalid URL error.
Post by Bill Glidden
Checking Connection to WSUS/SUS Server
WUServer = http://w2ksvr1:8530
WUStatusServer = http://w2ksvr1:8530
The URL certainly looks valid -- which brings us back to the proxy server.
Does the /proxy/ server consider this as a valid URL?
--
Lawrence Garvin, M.S., MVP-Software Distribution
Everything you need for WSUS is at
http://technet2.microsoft.com/windowsserver/en/technologies/featured/wsus/default.mspx
And, eveything else is at
http://wsusinfo.onsitechsolutions.com
...
Bill Glidden
2006-05-01 00:44:31 UTC
Permalink
Hi Lawrence,

Thank you for your reply. Please be patient with me - I am having trouble
trying to understand why WSUS 'just worked' on one SBS 2003 Premium Edition
SP1, ISA 2004 and does not work another virtually identical server (the one
in question). Also please assume my skills in this area are modest. Please
see my responses embedded in your post:

Cheers,
Bill
Post by Lawrence Garvin (MVP)
Post by Bill Glidden
Given that this WSUS is installed on a SBS 2003 server which is also an
OWA server does the SSL issue apply in my situation?
This is extremely critical information, and it would have been helpful if
you'd included it in the original post.
I did - my orginal post was in the sbs newsgroup and kj crossposted to this
one and then Athif picked it up. So not all of the information exists in
both newsgoups. Sorry if this has caused confusion.
Post by Lawrence Garvin (MVP)
Post by Bill Glidden
'403' errors are caused by proxy servers and firewalls blocking access to
the requested resource, usually as a result of a deny rule, or the
absence of an allow rule.
I have checked the ISA 2004 access rules on both servers and they are
vitually identical - both have a SBS Microsoft Update Sites Access Rule
which allow access from all protected networks to Microsoft Error reporting
and System Policy Allowed Sites. There are no explicit rules on either
server allowing access to the WSUS site. One works the other does not.
Post by Lawrence Garvin (MVP)
Then, I'm going to point you to the report from the CDT about your proxy
Checking Proxy Configuration
Checking for winhttp local machine Proxy settings . . . PASS
Winhttp local machine access type
<Direct Connection>
Winhttp local machine Proxy. . . . . . . . . . NONE
Winhttp local machine ProxyBypass. . . . . . . NONE
Checking User IE Proxy settings . . . . . . . . . . . . PASS
User IE Proxy
w2ksvr1:8080
User IE ProxyByPass
<local>
User IE AutoConfig URL Proxy
http://w2ksvr1:8080/array.dll?Get.Routing.Script
User IE AutoDetect
AutoDetect in use
1. You're using AutoDetect. WinHTTP doesn't pick up autodetect settings.
I have since disabled AutoDetect and still get the same error:

VerifyWUServerURL() failed with hr=0x80072ee5
Post by Lawrence Garvin (MVP)
2. The output is quite plain that WinHTTP is not using a proxy server at
all.
I don't understand your point here.

Here is the output from a PC attached to the working SBS2003/WSUS server
mentioned above:

WSUS Client Diagnostics Tool

Checking Machine State
Checking for admin rights to run tool . . . . . . . . . PASS
Automatic Updates Service is running. . . . . . . . . . PASS
Background Intelligent Transfer Service is running. . . PASS
Wuaueng.dll version 5.8.0.2469. . . . . . . . . . . . . PASS
This version is WSUS 2.0

Checking AU Settings
AU Option is 4: Scheduled Install . . . . . . . . . . . PASS
Option is from Policy settings

Checking Proxy Configuration
Checking for winhttp local machine Proxy settings . . . PASS
Winhttp local machine access type
<Direct Connection>
Winhttp local machine Proxy. . . . . . . . . . NONE
Winhttp local machine ProxyBypass. . . . . . . NONE
Checking User IE Proxy settings . . . . . . . . . . . . PASS
User IE Proxy
GLIDDEN-SBS2K3:8080
User IE ProxyByPass
<local>
User IE AutoConfig URL Proxy
http://GLIDDEN-SBS2K3:8080/array.dll?Get.Routing.Script
User IE AutoDetect
AutoDetect in use

Checking Connection to WSUS/SUS Server
WUServer = http://glidden-sbs2k3:8530
WUStatusServer = http://glidden-sbs2k3:8530
UseWuServer is enabled. . . . . . . . . . . . . . . . . PASS
Connection to server. . . . . . . . . . . . . . . . . . PASS
SelfUpdate folder is present. . . . . . . . . . . . . . PASS

Press Enter to Complete
Post by Lawrence Garvin (MVP)
3. The proxy server you have your client directed to /IS/ the same machine
as the WSUS server, which, you tell us in another post is the SBS2003
server!
(a) Why do you have IE configured to talk to the proxy server on the
SBS2003 system?
Do you mean IE on the SBS2003 server itself? If so, it is not - only on the
client PCs which is the way SBS configures clients' IE by default. It does
not stop WSUS from working on the other system mentioned above.
Post by Lawrence Garvin (MVP)
(b) If WinHTTP is not talking to that proxy server, are you sure it can
get to the WSUS service otherwise?
I'm getting more confused here. I know I can open http://w2ksvr1/wsusadmin
from any client PC. Is this what you mean?
Post by Lawrence Garvin (MVP)
(c) You cannot 'clone' the IE settings to WinHTTP, because of the proxy
URL, which WinHTTP will not be able to deal with (assuming you need the
proxy).
Sorry. I don't know what you mean.
Post by Lawrence Garvin (MVP)
(d) I'm guessing, because of the use of the proxy, that you're still
running ISA2000 on this SBS2003 system. (If so, any reason you've not
applied SP1 and upgraded to ISA2004?) (If I'm wrong in my assumption, then
just ignore this note. I'm merely making a semi-educated guess.)
As mentioned above and in previous posts I am running SP1 and ISA 2004.
Post by Lawrence Garvin (MVP)
By definition, the SBS2003 server running ISA cannot talk to any external
device unless first a rule is created to permit the "Local Host" to
communicate with that external device.
Also, unless you've configured sufficient rules to permit the SBS2003 to
talk to its own WSUS server without going through the proxy, you'll need
to use the proxycfg.exe utility to properly configure the WinHTTP proxy
client.
I certainly did not have to do this on virtually identical SBS2003 server
mentioned above. See why I am tearing my hair?
Post by Lawrence Garvin (MVP)
Finally, your error has changed. Now the CDT is giving you a '2ee5' error
which is an invalid URL error.
Post by Bill Glidden
Checking Connection to WSUS/SUS Server
WUServer = http://w2ksvr1:8530
WUStatusServer = http://w2ksvr1:8530
The URL certainly looks valid -- which brings us back to the proxy server.
Does the /proxy/ server consider this as a valid URL?
The 'invalid URL' has always been the error where clientdiags bails. I'm
sure if I could find out why this happens, this thing could work. How do I
check whether the /proxy/ considers this vaild or not?
Post by Lawrence Garvin (MVP)
--
Lawrence Garvin, M.S., MVP-Software Distribution
Everything you need for WSUS is at
http://technet2.microsoft.com/windowsserver/en/technologies/featured/wsus/default.mspx
And, eveything else is at
http://wsusinfo.onsitechsolutions.com
...
Mohammed Athif
2006-05-01 12:20:52 UTC
Permalink
Hi Bill,

Post the latest detection from WindowsUpdate.log of the workstations
which are failing to appear in WSUS. I am asssuming the workstations
are not cloned!

Happy Patching,
Mohammed Athif Khaleel
http://msmvps.com/athif
Lawrence Garvin (MVP)
2006-05-08 00:19:09 UTC
Permalink
Bill, I just got around to having the time to get caught up on some traffic
in this group. Not sure where Athif went to.

I took a look at the attached client log, and I believe I found the problem
in the first five lines:
WARNING: DownloadFileInternal failed for http://w2ksvr1:8530
/selfupdate/wuident.cab: error 0x80072ee5

The 0x80072ee5 error is an Invalid URL message, and the WUA log is showing a
trailing space after the port number of the URL. I would suggest double
checking the policy configuration and make sure there is not an extra space
in the policy definition.
--
Lawrence Garvin, M.S., MVP-Software Distribution
Everything you need for WSUS is at
http://technet2.microsoft.com/windowsserver/en/technologies/featured/wsus/default.mspx
And, eveything else is at
http://wsusinfo.onsitechsolutions.com
...
Post by Bill Glidden
Hi Athif,
Thanks for coming back! Please recall that NONE of the workstations
including the WSUS server itself are calling home (they never have). Isn't
this a server-side issue? I have attached an extract from the
windowsupdate.log of a client PC and the WSUS server itself.
If by 'cloned' you mean setup with a disk image using ghost or similar, no
they are all set up the hard way.
Cheers,
Bill
Post by Mohammed Athif
Hi Bill,
Post the latest detection from WindowsUpdate.log of the workstations
which are failing to appear in WSUS. I am asssuming the workstations
are not cloned!
Happy Patching,
Mohammed Athif Khaleel
http://msmvps.com/athif
Bill Glidden
2006-05-08 01:49:13 UTC
Permalink
Hi Lawrence,

I was just in the middle of refreshing this issue with a new post containing
all configs, diags, etc., etc., hoping to entice you back into the thread.
When I went to the newsgroup to compose the new post I saw your latest. You
are 100% correct, there WAS a trailing blank in the urls in the GPO!! Both
urls in fact, since did a copy paste for the second one. I missed it even
when I went and changed the server name to an IP address. Boy, do I feel
like a goose. I have wasted everyone's time with this self-inflicted issue
and for this I apologise to all.

I great big thanks to you, Lawrence. Your eyes are sharper than the average
eagle's.

Cheers,
Bill
Post by Lawrence Garvin (MVP)
Bill, I just got around to having the time to get caught up on some
traffic in this group. Not sure where Athif went to.
I took a look at the attached client log, and I believe I found the
WARNING: DownloadFileInternal failed for http://w2ksvr1:8530
/selfupdate/wuident.cab: error 0x80072ee5
The 0x80072ee5 error is an Invalid URL message, and the WUA log is showing
a trailing space after the port number of the URL. I would suggest double
checking the policy configuration and make sure there is not an extra
space in the policy definition.
--
Lawrence Garvin, M.S., MVP-Software Distribution
Everything you need for WSUS is at
http://technet2.microsoft.com/windowsserver/en/technologies/featured/wsus/default.mspx
And, eveything else is at
http://wsusinfo.onsitechsolutions.com
...
Post by Bill Glidden
Hi Athif,
Thanks for coming back! Please recall that NONE of the workstations
including the WSUS server itself are calling home (they never have).
Isn't this a server-side issue? I have attached an extract from the
windowsupdate.log of a client PC and the WSUS server itself.
If by 'cloned' you mean setup with a disk image using ghost or similar,
no they are all set up the hard way.
Cheers,
Bill
Post by Mohammed Athif
Hi Bill,
Post the latest detection from WindowsUpdate.log of the workstations
which are failing to appear in WSUS. I am asssuming the workstations
are not cloned!
Happy Patching,
Mohammed Athif Khaleel
http://msmvps.com/athif
Dave Mills
2006-05-08 05:27:44 UTC
Permalink
On Sun, 7 May 2006 19:19:09 -0500, "Lawrence Garvin \(MVP\)"
Post by Lawrence Garvin (MVP)
Bill, I just got around to having the time to get caught up on some traffic
in this group. Not sure where Athif went to.
I took a look at the attached client log, and I believe I found the problem
WARNING: DownloadFileInternal failed for http://w2ksvr1:8530
/selfupdate/wuident.cab: error 0x80072ee5
The 0x80072ee5 error is an Invalid URL message, and the WUA log is showing a
trailing space after the port number of the URL. I would suggest double
checking the policy configuration and make sure there is not an extra space
in the policy definition.
Well spotted Lawrence. Would you push this to the developers, they could easily
add a remove white space command for the URL. Or to the Client Diags maybe a
check for validity of the URL so that this or other simple typos (";" instead of
":" say) would be pointed out as "invalid URL"
--
Dave Mills
There are 10 type of people, those that understand binary and those that don't.
Lawrence Garvin (MVP)
2006-05-09 22:16:16 UTC
Permalink
Post by Dave Mills
On Sun, 7 May 2006 19:19:09 -0500, "Lawrence Garvin \(MVP\)"
Post by Lawrence Garvin (MVP)
Bill, I just got around to having the time to get caught up on some traffic
in this group. Not sure where Athif went to.
I took a look at the attached client log, and I believe I found the problem
WARNING: DownloadFileInternal failed for http://w2ksvr1:8530
/selfupdate/wuident.cab: error 0x80072ee5
The 0x80072ee5 error is an Invalid URL message, and the WUA log is showing a
trailing space after the port number of the URL. I would suggest double
checking the policy configuration and make sure there is not an extra space
in the policy definition.
Well spotted Lawrence. Would you push this to the developers, they could easily
add a remove white space command for the URL. Or to the Client Diags maybe a
check for validity of the URL so that this or other simple typos (";" instead of
":" say) would be pointed out as "invalid URL"
I'll mention it to them next time I have their ear.

I suspect that the challenge comes in that we're dealing with two different
sources of information being concatenated at this point.

The /policy/ provides the prefix: http://wsusservername:8530 and the /WUA/
provides the hardcoded suffix "/selfupdate/wuident.cab"

The WUA must assume that the string provided by the policy is 100% accurate,
that is to say, /any/ validity checking by the WUA on that string would not
normally be appropriate, however, it might well be trivial on the part of
the WUA programmers to slap an RTRIM(URLString) in that code to prevent
against issues caused by trailing whitespace.
--
Lawrence Garvin, M.S., MVP-Software Distribution
Everything you need for WSUS is at
http://technet2.microsoft.com/windowsserver/en/technologies/featured/wsus/default.mspx
And, eveything else is at
http://wsusinfo.onsitechsolutions.com
...
Mohammed Athif
2006-05-08 08:37:02 UTC
Permalink
Hey Lawrence, You have MICROSCOPIC eye man:-) Thanks.

Athif
Bill Glidden
2006-04-30 05:02:12 UTC
Permalink
Hi Athif,

I unchecked 'Use automatic configuration script' in IE LAN
Settings on a client and ran the clientdiag and got the same error.

Cheers,
Bill
Post by Mohammed Athif
Hi,
What happens if you disable IE AUTOCONFIGURATION SCRIP -
http://w2ksvr1:8080/array.dll?Get.Routing.Script
Happy Patching,
Mohammed Athif Khaleel
http://msmvps.com/athif
Loading...