Microsoft provides no way to distribute hotfixes. While WSUS can be used to distribute updates from Update.Microsoft.Com or the Microsoft catalog, there is no known way to import hotfixes into WSUS. To install the update manually, you might run a command such as:
However, that won't work with as a WSUS update, for 2 reasons:
Extract the files from the MSU file you downloaded from Microsoft. This process is described here. In essence, you run this command:
expand "Windows6.1-KB983544-x86.msu" -F:* c:\hotfix
Download RunIt.zip from the download area. link
Set the command line to (alter the name of the xml file to match what got extracted into c:\hotfix):
%windir%\system32\pkgmgr.exe /quiet /n:Windows6.1-KB983544-x86.xml
Consider prefixing this command with /L to enable logging (see [#Troubleshooting]).
In order for WSUS to correctly handle hotfixes that need to reboot, add a "Return Code" result with:
Return Code: 3010
Set the Installed rule. An example might be to use a WMI Query rule such as:
Query: Select HotFixID from win32_quickfixengineering where HotFixID = 'KB983544'
Set the Installable Rule. The details for how to determine if the hotfix are installed are typically described by Microsoft as part of the hotfix description. Specifically, you should consider using ALL of these rules:
FileVersion Path="Ntoskrnl.exe" Csidl=SYSTEM Comparison="LessThan" Version="6.1.7600.20713"
After you have defined the rule, but before you approve it, consider having a couple of clients perform detection. This will happen automatically based on WSUS scheduling, or can be triggered from the command line with "wuauclt /detectnow" or on Vista (or later) thru WUAPP.exe. Make sure your Installable/Installed rules perform as expected.
If the update doesn't perform as expected, consider prepending /L to your command line, like this:
/L %windir%\system32\pkgmgr.exe /quiet /n:Windows6.1-KB983544-x86.xml
This will cause RunIt to write logging information to %windir%\temp\runit.log. A sample log entry might look like:
----- 2010/11/11 20:15:41 ----- Starting CommandLine: /L %windir%\system32\pkgmgr.exe /quiet /n:Windows6.1-KB983544-x86.xml CreateProcess: C:\Windows\system32\pkgmgr.exe /quiet /n:Windows6.1-KB983544-x86.xml Result: 0 ----- 2010/11/11 20:15:42 ----- Ending
Also, you can use redirection. You will need a command line more like this:
/L %comspec% /c %windir%\system32\pkgmgr.exe /quiet /n:Windows6.1-KB983544-x86.xml > %windir%\temp\mylog.log
While RunIt was originally designed to be used with hotfixes, it can be used to launch any locally installed applications, run batch files, etc. Source code is included.