Article 021

How can I create a read-only view to the WSUS Administration Console?

There is no "official" methodology for doing this; however, it's reasonable that there are a couple of "hacks" that could provide this capability, and probably more ideas that I've not even considered here. These are just ones I've previously suggested over the course of the past six months. I've not actually tried any of them myself, though, so the ideas are untested and carry no warranty at all.

(1) Rebuild the ~\wsusadmin\default.aspx page and make it available in a new virtual server, including only the links to the Reports page.

(2) Clone the entire ~\wsusadmin website to a new virtual server, but remove any links that would send data to the database, replacing them with a simple aspx page displaying a reminder that the functionality is "Read-Only".

(3) Clone the entire ~\wsusadmin website to a new virtual server, but assign it a different database account, that is configured as a Read/Write-deny account, thus preventing the ability to 'change' data in the database, but also avoiding the issue to rewrite the ASP.NET code.

(4) "Migrate" the existing ASP.NET code to the ASP.NET v2.0 platform, and incorporate the use of role-based security.

(5) Wait a short time, as the WSUS team is already hard at work on the "next" version of WSUS.. and based on the timing.. my personal ///SPECULATION///

(I have absolutely ///NO/// factual knowledge of this -- please please please note my DISCLAIMER...)

    is that the new version will:
        (a) be developed in ASP.NET v2 /and/ will use role-based security, thus providing a read-only capability out-of-the-box
        (b) be developed to use SQL Server 2005 Express Edition.

Note: I've also read of at least one instance where SQL Server Reporting Services was successfully used to build a reporting interface -- but be strongly cautioned about the likelihood that the database schemas will change with the next release, which may necessitate the rebuilding of any Reporting Services package.