I've been having trouble getting a GUP working on any of our smaller offices with SEP 11. I think I've identified the problem, but I don't how how to get around it.
We have many small offices. Each of those offices has a server that stands as both a domain controller and file server for the office. Since that server is always on, we thought it would make sense to also use it as a GUP for the office -- more reliable than using a client desktop that may not always be on, and puts the work on a server instead of a user's computer.
From some other posts I've read that the GUP needs to have the same LiveUpdate policy as all the other computers in that area, presumably to tell it that it's supposed to be playing the role of the GUP.
However, for other reasons we've already used groups to split up servers and clients, because servers are treated differently from all the other clients. We've got a lengthy exclusion list of database files, for instance, and of course we're using a different installer that provides antivirus and antispyware but not some of the other components, which aren't supported on servers.
Because there are a lot of clients, we have them broken down into groups/subfolders by office. For servers, since there aren't nearly as many of them, we had them all in a single folder/group.
But that's where I'm getting stuck. I was hoping I could apply the right LiveUpdate policy to specific servers, but it looks like I have to apply a policy to a folder/group, rather than to an individual computer. I can't move the servers into the same groups as the clients, because we'd lose the important exclusions. I guess what I may be left with is having to also break down the servers into various subgroups. It seems kind of silly to have to make 20 folders for 30 servers (one per office, plus a few extras at headquarters) with just one server per group in almost all cases. Is that really the way I need to go, or is there some other trick I'm missing?