Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File

Java-MSI-Installers

Last updated on July 10th, 2023 at 04:15 pm

Read Time:3 Minute, 38 Second

We have previously written a guide on how to deploy Java updates to client machines using System Center Update Publisher (SCUP) and WSUS/Configuration Manager which you may have seen here:

Java Updates using WSUS/SCCM/SCUP and Deployed using Windows Updates

However, we have been looking into a quicker and better way of doing this as we do not want to have to keep manually inputting the Installable Rules in SCUP. So we started doing some testing in my lab and we have now found a much easier solution to deploying Java updates via Windows Updates. Please carry on reading as this is going to be a long post, but very much worth the time!

Note that this process will be using SCUP to create the update and then you can import that newly created update into WSUS or into Configuration Manager for deployment to your Windows Update clients.

Prerequisites

As with the previous guide, before starting this process, you must ensure that you have SCUP installed and configured correctly. You must also ensure that you have your WSUS Self Certs set up in your organisation, a guide on how to do this is below:

How to deploy certificates for custom WSUS updates to client machines

As we write this post, the current version is Java Client 7 Update 55 – however, for future reference, this process should work with all future releases.

Instructions

Firstly, you need to gather the Java MSI file, to do this you can follow this guide below:

Java Client Downloads and Instructions

Although this guide is for the MSI for version 9, the process remains exactly the same for gathering version 55.

Once you have the MSI file for the version you want to create and you have your certificates setup and SCUP installed, you can now proceed to create the update in SCUP.

System Center Update Publisher

Go into SCUP and right click on All Software Updates and click the Create Vendor Option:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 1

You can call this what you like, but we are going to enter the vendor as “Oracle”.

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 2

You should then right click on the vendor name you created and click Create Product. You can enter what you like here but we am going to use “Java Client”. You should now have a tree setup similar to the one below:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 3

Now you should highlight the Product name folder and click the Create button and select Software Update:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 4

You now have a wizard to complete with all your custom settings in for the update. To start with, you now need to place your earlier acquired Java MSI file into a network share that is accessible by any user that will need to receive this update. Once you have placed the MSI file in a shared location, you should browse to this location and select the MSI file and enter the location in the Download URL like below:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 5

You can then click next and enter the Software Update information as per your own preferences:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 6

Click next and continue to enter your custom information:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 7

You should then click next and you can choose to add Prerequisites and Superseded Updates or continue without them.

You will then get to the Installable Rules and Installed Rules sections, where you will find that these are now pre-populated with the MSI generated codes, so there is now no need to have to create these based on registry settings:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 8
Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 9

You will then get to the Summary page where you can complete the creation wizard:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 10

You then will see the update available to you in SCUP, so you now need to publish the update to WSUS or Configuration Manager.

To do this, highlight the update and click the Publish button on the ribbon:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 11

You will then need to complete the Publish wizard. On the first page, click Full Content and then click Next:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 12

You may get a certificate box pop up like the one below, you can click Accept on this box:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 13

You can then complete the wizard to the end.

Client Windows Updates

This update will now be available to your clients via Windows Update once you have synchronised your WSUS or Configuration Manager server:

Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File 14

Feedback

We would love to hear your feedback on this article so come and join us on Facebook or Twitter and let us know what you think!

Click to rate this post!
[Total: 0 Average: 0]

Free Subscription

If you want to be notified when we post more quality guides like this one, sign up to our free subscription service and you will receive an email when a new post is live.

Join 441 other subscribers.

No need to worry, we will not be filling your inbox with spam and you can unsubscribe anytime you like.


9 thoughts on “Java Client Updates Deployment using WSUS/SCCM/SCUP from an MSI File

  1. Is there anyway to pass a value to remove the old Java version during the install? On my Java Update I’ve set the command line option to “REMOVEOUTOFDATEJRES=1” but it doesn’t seem to work?

  2. i have an issue when i go to publish it states “updates failed to publish, updates (include dependencies) failed to expire, failed due to incorrect file digest, failed to invalid cert, invalide metadata, etc…HELP?

    1. Not seen that before – can you post a screenshot of the error – also confirm what version you are using, are you using MSI or offline EXE?

  3. Is there anyway to pass a value to remove the old Java version during the install? On my Java Update I’ve set the command line option to “REMOVEOUTOFDATEJRES=1” but it doesn’t seem to work?

  4. Is there anyway to pass a value to remove the old Java version during the install? On my Java Update I’ve set the command line option to “REMOVEOUTOFDATEJRES=1” but it doesn’t seem to work?

  5. i have an issue when i go to publish it states “updates failed to publish, updates (include dependencies) failed to expire, failed due to incorrect file digest, failed to invalid cert, invalide metadata, etc…HELP?

    1. Not seen that before – can you post a screenshot of the error – also confirm what version you are using, are you using MSI or offline EXE?

  6. i have an issue when i go to publish it states “updates failed to publish, updates (include dependencies) failed to expire, failed due to incorrect file digest, failed to invalid cert, invalide metadata, etc…HELP?

    1. Not seen that before – can you post a screenshot of the error – also confirm what version you are using, are you using MSI or offline EXE?

Leave us a message...

This site uses Akismet to reduce spam. Learn how your comment data is processed.