cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted
Stoj-kko
Level 8
Report Inappropriate Content
Message 1 of 6
‎01-22-2018 09:50 AM

Windows Updates with Application Control without entering update mode

Jump to solution

I am running Application Control (currently trial version) on my Windows 10 LTSB system and am wondering if there is away to allow for Windows updates on the system without the user entering update mode. I am looking for something similar to certificate based updates for applications where you can just add a trusted certificate. Is there anything like that for Windows OS updates? Thanks!

0 Kudos
Reply
1 Solution

Accepted Solutions
Highlighted
wouterr
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 4 of 6
‎01-23-2018 06:41 AM

Re: Windows Updates with Application Control without entering update mode

Jump to solution

for standalone solidcore use the finetune.bat tool and run following command:

finetune.bat ADD u-WindowsUpdate 

which you can find here: "C:\Program Files\McAfee\Solidcore\finetune.bat"

 

for epo managed click "Add" in you application control rule" policy

View solution in original post

0 Kudos
Reply
5 Replies
Highlighted
wouterr
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 2 of 6
‎01-23-2018 01:45 AM

Re: Windows Updates with Application Control without entering update mode

Jump to solution

Hi,

 

there is a predefined rule group called "windows Update" which you can add to your Appcontrol policy which will allow you to install windows updates in enabled mode. 

0 Kudos
Reply
Highlighted
Stoj-kko
Level 8
Report Inappropriate Content
Message 3 of 6
‎01-23-2018 05:43 AM

Re: Windows Updates with Application Control without entering update mode

Jump to solution

Thank you! Do you know how I can add this rule group to my whitelist? I am searching the documentation for it now.

0 Kudos
Reply
Highlighted
wouterr
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 4 of 6
‎01-23-2018 06:41 AM

Re: Windows Updates with Application Control without entering update mode

Jump to solution

for standalone solidcore use the finetune.bat tool and run following command:

finetune.bat ADD u-WindowsUpdate 

which you can find here: "C:\Program Files\McAfee\Solidcore\finetune.bat"

 

for epo managed click "Add" in you application control rule" policy

View solution in original post

0 Kudos
Reply
Highlighted
Stoj-kko
Level 8
Report Inappropriate Content
Message 5 of 6
‎01-23-2018 10:49 AM

Re: Windows Updates with Application Control without entering update mode

Jump to solution

Hmm sadly this did not work 😞 the command seemed to run successfully and after a reboot and even resolidify-ing the drive, my Windows updates are still unable to install. Looking in the Windows event logs it looks like McAfee is still blocking the update. Is there any other step I need to take?

0 Kudos
Reply
Highlighted
Stoj-kko
Level 8
Report Inappropriate Content
Message 6 of 6
‎01-24-2018 07:07 AM

Re: Windows Updates with Application Control without entering update mode

Jump to solution

Looks like it did work after all! I just needed to change some firewall settings.

0 Kudos
Reply
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community


Corporate Headquarters
6220 America Center Drive
San Jose, CA 95002 USA

Consumer Support   |   Enterprise Support   |   McAfee.com

Legal   |   Privacy   |   Copyright © 2020 McAfee, LLC