In this article we will show you how to slipstream updates gained using WSUS Offline Updater, inside Microsoft Deployment Toolkit (MDT) 2013 task sequences to deploy fully patched Windows 10 image over network.
The first thing you need to do — download the latest version of WSUS Offline Updater from this website. At this moment the last available version of WSUS Offline Updater is 10.7.
Note. WSUS Offline Updater is a free utility which is designed to automatically download all critical and security updates for specified Microsoft products from Microsoft Update or local WSUS server. Updates are stored in the local folder, so Administrator can install this updates on any system in offline mode without internet connection or an internal WSUS server. The utility allows you to download updates for all supported versions of Windows (Windows Vista, 7, 8, 10 / Windows Server 2008, 2008 R2, 2012, 2012 R2), Office 2010, 2013 and 2016, .Net Frameworks, C ++ Runtime libraries, Windows Defender definitions, Microsoft Security Essentials and so on.
Now we need to download and extract wsusoffline107.zip to any folder (C:\Distr\wsusoffline in our case).
Launch executable file UpdateGenerator.exe (WSUS Offline Update Generator).
Select Windows OS version which you want to receive the list of mandatory security updates for. This time in section Windows 10 / Server 2016 (w100 / w100-x64) we choose version x64 Global (multilingual updates) and click on Start.
At first the program will get a list of available patches and then begin to download ones that have not yet been downloaded. This means that you can run the program periodically to check for new updates without having to download all completely anew. Depending on your internet channel and product selection download, it can take a long time.
- In the programs settings you can specify that the updates were taken not from the Microsoft Update site, but from internal WSUS server (WSUS button)
- If you connect to the internet using proxy server, the address of proxy and credentials can be set by pressing on button Proxy
All downloaded updates are stored in Client folder.
To install updates on the clients computers use program UpdateInstaller.exe with graphical interface. But in our case we will not use it, because GUI is not needed. For this case, there is a file with a batch script Update.cmd (which runs another script — \cmd\DoUpdate.cmd). MDT 2013 will run file update.cmd when deploying Windows 10 on clients.
- Catalog wsus contains the latest version of the Windows Update Agent
- Catalog w100-x64\glb — contains downloaded update files for Windows 10 in *.cab format
After all update files are downloaded on your local disk, close WSUS Offline Updater application and fully copy folder Client to your MDT deployment server to folder C:\DeploymentShare\Scripts (by default).
It remains to integrate the installation of downloaded updates into the MDT Task Sequence.
Open Deployment Workbench (MDT) console, go to the Task Sequences and select Deployment task in which you want to add a task to install updates (in our example task name Deploy Win 10 x64 Pro). Open its Properties and click on the Task Sequence tab.
With MDT task we need to create a script that would be mounted Client folder as a network drive (because the batch file update.cmd is not working with UNC path) and run update.cmd, which will start updates installation.
Select group named Custom Task, which is located in the State Restore section right after Windows Update (Post-Application Installation) task.
Within this group, we need to create two tasks:
- Mount UNC share Client as a network drive
- Run script update.cmd, which performs the installation of updates.
Create a task (Add->General->Run Command Line) with name Mount Network Folder.
In Command line field you need to specify following command:
cscript.exe "%SCRIPTROOT%\ZTIConnect.wsf" /uncpath:\\10.24.0.70\DeploymentShare\Scripts\client
Tip. ZTIConnect script mount network folder as a drive with Y: letter.
Create following task called Install Windows Updates Offline:
Cmd.exe /c “Y:\DeploymentShare\Scripts\client\update.bat”
Preform the update of deployment share and MDT regenerates images and configuration files for OS deployment.
It remains to check Windows 10 MDT deployment task on a virtual or physical machine. Power on your test system and boot it from LAN using PXE loader.
Select your Task Sequence and wait for the Windows 10 installation. After installation is complete, a window will appear with title Administrator DoUpdate, string Starting WSUS Offline Update… indicates that installation of updates is started successfully.
Wait for the update is installed and restart your computer.
So, this time we have configured an automatic Windows updates installation in the process of deploying Windows 10 using Microsoft Deployment Toolkit. Hope it was useful for you!