This month’s Windows updates were kind of, let’s say, a little bit cumbersome. After having HAFNIUM controlled Exchange Servers, fixing a nasty DNS bug, March’s Windows10/Windows Server cumulative update was more less a disaster.
The update of an update of an update finally fixed the printer bug causing BSOD.
Sadly these updates were not presented via on-premise WSUS system, therefore admins need to manually add them via the console.
After trying the known process, I got an error message which showed this error plus an error message: 0x80131509
To fix the problem in my case I had to add a registry setting, which actually set the support of TLS 1.1 / 1.2 on the .NET Framework.
For this simply run this command in Powershell to create the registry entry
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319 /V SchUseStrongCrypto /T REG_DWORD /D 1
Afterwards, it was again possible to manually add updates via the WSUS console