Event ID - 13022

Event Id	13022
Source	Windows Server Update Services
Description	Many client computers are not reporting their inventory. %1 have been detected so far.
Event Information	According to Microsoft : Cause : Clients report their software inventory to the server. Resolution : Client Inventory Client inventory collection is not working correctly. Possible resolutions include: First, troubleshoot any issues with SQL Server before proceeding. Troubleshoot any general issues with IIS. Check permissions on the client Web service directory. a)Open a command window. b)Type cd \Inventory c)Type cacls d)The following ACEs should be set: a)NT AUTHORITY\NETWORK SERVICE:(OI)(CI)R b)BUILTIN\Users:(OI)(CI)R c)NT AUTHORITY\Authenticated Users:(OI)(CI)R d)BUILTIN\Administrators:(OI)(CI)F e)NT AUTHORITY\SYSTEM:(OI)(CI)F Check the IIS configuration of the reporting Web service using the IIS script adsutil.vbs (or use the IIS Administration UI Tool). a)Open a command window. b)Locate the adsutil.vbs tool, which is typically in \AdminScripts. c)Locate WSUS virtual directories on the IIS server: type \AdminScripts\adsutil.vbs find path d)Find the path of the Inventory service (it will look likeW3SVC//ROOT/Inventory). e)Get the properties of the Web service: type \AdminScripts\adsutil.vbs enum W3SVC//ROOT/Inventory f)Compare the output with typical values below (this is a partial list) g)Type \AdminScripts\adsutil.vbs enum W3SVC/1 h)Compare output with typical values below. This is a partial listing. Verfy : Look for the corresponding error event. a)Open a command window. b)Type cd \Tools c)Type wsusutil checkhealth d)Type eventvwr
Reference Links	Event ID 13022 from Source Windows Server Update Services

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught