WSUS fails direct import from MS Update Catalog
(Error 80131509)
Cause:
The Active-X plugin or any other subsequent component involved in importing updates from the Microsoft update catalog utilizes .NET4 need enforce "strong" ciphers for .NET 4.0:
Solution:
Add registry
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319\
Name: SchUseStrongCrypto
Type: DWORD
Value: 1
Restart
Symptoms:
Event ID 31 Windows Update failed to download an update (.msu)
Cause:
Missing mime-type on the IIS server
Solution:
- Open IIS
- Expand Sites > WSUS Administrator
- Double click mime-type icon from right
- Add new mime-type
File Name extension: .msu
mime-type: application/octet-stream
Restart WSUS
Symptpms:
Import Out of Band Updates to WSUS using Microsoft Edge error "This update cannot be imported into Windows Server Update Services, because it is not compatible with your version of WSUS"
Cause:
Solution:
- Open Microsoft Edge Options > Default Browser
- Internet Explorer (mode) is installed in Settings > Apps > Optional Features
- Change "Allow Sites to be reloaded in Internet Explorer Mode" to 'Allow'
- Add links to add to Microsoft Edge IE Mode
- Remove all other links in the scope of *.catalog.update.microsoft.com, and leave
https://catalog.update.microsoft.com/
https://catalog.update.microsoft.com/v7/site/Home.aspx
Other things:
If the "Default" setting will not be sufficient to allow the installation and use of the ActiveX plugin.
Go back to your update catalog tab, Install the ActiveX if you have not done on this box already.
Check if you have not setup restrictions to execute or install ActiveX plugins in IE directly or via group policy.
