WSUS on Windows 2016 core without using powershell, only GUI.

This is how i did WSUS server installation and configuration in Windows 2016 standard server core without using powershell. 

Personally i don't hate powershell, but decided to make life little bit easier.

As the manual contains a lot of sections i am not adding screen shots.

Our scenario.
we have a HyperV VM for WSUS server and Windows 10 client installed with Windows admin center (1904), RSAT tools including hyperv manager.

Following is the VM in my case. Quad Core, 12 GB, Bridged NIC, HDD-1 150 GB (for Operating system), HDD-2 1500 GB for WSUS content

let's start!

1. Install Windows 2016 core in HDD-1.

2. Post install of windows 2016 standard core.

1. Open sconfig in command line and complete following four steps.
2. Configure hostname, IP address, enable Remote management
3. Update operating system completely.
4. Join server in domain.
5. Add local admin for remote management

3. Configure storage for WSUS content.

1. Open Windows admin center and format disk and create volume
2. Create a folder named wsus in new volume

4. Install WSUS

1. Open server manager, click manage and click add Roles and Features.
2. It will open a wizard, follow steps in add roles and features wizard. 
3. Before You Begin, click next
4. Installation Type, select Role-based or feature-based installation and click next
5. Server Selection, select server we are planning to install WSUS role.
6. Server Roles, Select Windows Server Update Services in new window make sure to tick Include management tools and click on Add Features.
7. Features, click next.
8. WSUS, click next.
9. Role Services, Make sure that WID Connectivity and WSUS Services options are ticked and click Next. (WID is windows internal database which is used for Small to medium sized installations) 
10. Content, click the Store update option in the following location option, and then type the location. in my case (d:\wsus)
11. Web Server Role (IIS), click Next.
12. Role Services, click Next.  
13. Confirmation, have a look at the features to be installed and click Install. (no need to tick Restart the destination server automatically)
14. Results, click close once installation is succeeded.

Next one is the tricky part, i did Launch post-installation tasks and nothing showed up.
Then i restarted the server and Post-installation part was showing in red, then i clicked on it and it turned to normal color.
Dont worry we can do it from Windows 10 PC and following are the steps.

5. Initial configuration WSUS.

1. open wsus console from windows 10 pc in which rsat tools are installed.
2. it will open-up the initial configuration or post deployment tasks of WSUS
3. Select the location to store updates (d:\wsus in my case)
4. in the wizard select settings as per your need.
5. Before You Begin, click Next.
6. Microsoft Update Improvement Program, untick click Next
7. Choose Upstream Server, select which server will synchronize the WSUS server. If it is first WSUS server then select Synchronize from Microsoft Update.
8. Specify Proxy Server, click Next. (fill the fields if there is proxy)
9. Click on the Start Connecting and wait until the process completes, this is fetching details from upstream server which may take several minutes.
10. Choose Languages, select the language which using in your infrastructure. dont select unwanted languages else it will download unwanted updates and eat up the resources. 
11. Choose Product, Go through the list of products and select only the products which you are using. else it will download unwanted updates and eat up the resources.
12. Choose Classifications,  select only the update categories you are planning to use, i selected Critical, Definition, Security & Upgrades. don't select drives and other stuff.
13. Configure Sync Schedule, select non business hours for this job.
14. Finished, Tick Begin initial synchronization and click next then finish.
15. This concludes basic installation of WSUS server in windows 2016 core

6. Automatic approvals for selected category of updates.

1. Open WSUS console in Windows 10 PC, to to options -> Automatic Approvals
2. in Update rules select the type of updates you automatically want to install in clients.
3. Tick Default Automatic Approvals Rule and click apply.
4. Click Run Rule to apply rules on downloaded updates. (if synchronisation is over)
5. Click ok to close the window.

7. Configure the GPO for setting how clients are going to receive updates.

1. Open Group Policy Management Console on the Domain Controller and select the GPO which you want configure Automatic Updates right click edit. 
2. In the Group policy management editor expand computer Configuration -> Policies -> Administrative Templates -> Windows components -> Windows Update. 
3. In the right pane, Open Configure Automatic Updates and click Enable. And select the appropriate options as per requirement.
4. Next open Specify intranet Microsoft update service location and specify the server address like follows. http://servername:8530

8. Configure IIS on WSUS server for remote management.

1. install iis management tools in windows 10 PC for remote administration of iis in WSUS server. 
2. Control panel -> Programs and Features -> Turn Windows Features on or off -> Expand Internet Information services -> Select Web management tools -> click OK
3. Download and install IIS Manager for Remote Administration from Microsoft site.
4. Enable remote administration of IIS in WSUS server
5. Open windows admin center go to roles & features, in webserver(IIS) section install management service
6. change the registry values as following
7. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WebManagement\Server and change the value of the EnableRemoteManagement from 0 to 1.
8. Start WMSVC service (keep it manual as we need it only when its required)
9. Open iis manager in windows 10 PC 
10. Right click on start page (left side top corner under connections)
11. Click on connect to a server
12. Enter the server name then credentials. (with admin privileges)

9. Reports viewer installation, this should be installed on the PC using for remote administration.
     1. Install Microsoft system CLR Types for SQL Server 2012 (x64).
     2. Install Microsoft report viewr 2012 runtime.



If node reset issue facing in WSUS console then (following steps solved my issue) there are a lot of tweaking steps available on net

1. Click on WSUS server> Application Pools > Right Click on “WsusPool” and select Advanced Settings.
2. Make the following settings changes:
3. Queue Length: 25000
4. “Service Unavailable” Response: TcpLevel
5. Failure Interval (minutes): 30
6. Maximum Failures: 60
7. Virtual Memory Limit (kb): 0 (for unlimited)