Author Posts

August 22, 2015 at 9:52 pm

i have script powershell for update microsoft update
Now I have two things
1.lsnot script to automatically run updates and restart the server after the update.
2.script run on the server list found in Excel
Is it possible ?

# Script: WSUS.ps1
# Author: Gregory Strike
# Website:
# Date: 02-19-2010
# Information: This script was adapated from the WUA_SearchDownloadInstall.vbs VBScript from Microsoft. It uses the
# Microsoft.Update.Session COM object to query a WSUS server, find applicable updates, and install them.
# WSUS.ps1 is a little less verbose about what it is doing when compared to the orginal VBScript. The
# lines exist in the code below to show the same information as the original but are just commented out.
# WSUS.ps1 can automatically install applicable updates by passing a Y to the script. The default
# behavior is to ask whether or not to install the new updates.
# Syntax: .\WSUS.ps1 [Install] [Reboot]
# Where [Install] is optional and can be "Y", "Yes", "No" or "N"
# Whether or not to install the updates automatically. If Null, the user will be prompted.
# Where [Reboot] is optional and can be "Y", "Yes", "No" or "N", This
# If updates require a reboot, whether or not to reboot automatically. If Null, the user will
# be prompted.

$UpdateSession = New-Object -Com Microsoft.Update.Session
$UpdateSearcher = $UpdateSession.CreateUpdateSearcher()

Write-Host("Searching for applicable updates...") -Fore Green

$SearchResult = $UpdateSearcher.Search("IsInstalled=0 and Type='Software'")

Write-Host("List of applicable items on the machine:") -Fore Green
For ($X = 0; $X -lt $SearchResult.Updates.Count; $X++){
$Update = $SearchResult.Updates.Item($X)
Write-Host( ($X + 1).ToString() + "> " + $Update.Title)

If ($SearchResult.Updates.Count -eq 0) {
Write-Host("There are no applicable updates.")

#Write-Host("Creating collection of updates to download:") -Fore Green

$UpdatesToDownload = New-Object -Com Microsoft.Update.UpdateColl

For ($X = 0; $X -lt $SearchResult.Updates.Count; $X++){
$Update = $SearchResult.Updates.Item($X)
#Write-Host( ($X + 1).ToString() + "> Adding: " + $Update.Title)
$Null = $UpdatesToDownload.Add($Update)

Write-Host("Downloading Updates...") -Fore Green

$Downloader = $UpdateSession.CreateUpdateDownloader()
$Downloader.Updates = $UpdatesToDownload
$Null = $Downloader.Download()

#Write-Host("List of Downloaded Updates...") -Fore Green

$UpdatesToInstall = New-Object -Com Microsoft.Update.UpdateColl

For ($X = 0; $X -lt $SearchResult.Updates.Count; $X++){
$Update = $SearchResult.Updates.Item($X)
If ($Update.IsDownloaded) {
#Write-Host( ($X + 1).ToString() + "> " + $Update.Title)
$Null = $UpdatesToInstall.Add($Update)

$Install = [System.String]$Args[0]
$Reboot = [System.String]$Args[1]

If (!$Install){
$Install = Read-Host("Would you like to install these updates now? (Y/N)")

If ($Install.ToUpper() -eq "Y" -or $Install.ToUpper() -eq "YES"){
Write-Host("Installing Updates...") -Fore Green

$Installer = $UpdateSession.CreateUpdateInstaller()
$Installer.Updates = $UpdatesToInstall

$InstallationResult = $Installer.Install()

Write-Host("List of Updates Installed with Results:") -Fore Green

For ($X = 0; $X -lt $UpdatesToInstall.Count; $X++){
Write-Host($UpdatesToInstall.Item($X).Title + ": " + $InstallationResult.GetUpdateResult($X).ResultCode)

Write-Host("Installation Result: " + $InstallationResult.ResultCode)
Write-Host(" Reboot Required: " + $InstallationResult.RebootRequired)

If ($InstallationResult.RebootRequire -eq $True){
If (!$Reboot){
$Reboot = Read-Host("Would you like to install these updates now? (Y/N)")

If ($Reboot.ToUpper() -eq "Y" -or $Reboot.ToUpper() -eq "YES"){
Write-Host("Rebooting...") -Fore Green
(Get-WMIObject -Class Win32_OperatingSystem).Reboot()

August 23, 2015 at 2:45 am

1. If you specify ".\wsus.ps1 Y Y" on the command line, it will install and reboot the system. You must tell it to do so. That is not the default behavior. The first "Y" is the install switch and the second is the reboot switch.

2. The current version of this script does not take a list of computers to execute on. However, you could call it from another script using Invoke-Command. But that would also assume you have PSRemoting enabled on the remote system.

The way this script is written, judging by the author's use or Read-Host and Write-Host, it really is meant to be used locally on a machine in interactive use. And while it can be modified to run unattended and remotely, it definitely not an undertaking for someone to break into PowerShell.

August 26, 2015 at 4:32 am

Thank you
last question
How do I put this answer when I run the Invoke-Command

Invoke-Command -ComputerName (Get-Content C: \ Scripts \ Servers.txt) -FilePath C: \ temp \ WSUS.ps1


August 26, 2015 at 6:31 am

You won't be able to do this remotely without PSEXEC. MS doesn't allow it:-(