Windows Update KB KB4535680 failed to install to Server 2016 PowerEdge R540

Same here - no help - neither from DELL nor from Microsoft!

I assume Dell missed to release a compatible BIOS version....

hello i will search for more info about that and let you know. thanks marco

Same issue with Server 2019 on all PowerEdge R540. Servers all have latest available BIOS of 2.9.3. Update KB4535680 will not install on any R540. Windows Update reports 0x800f0922. Error in CBS log of 

Error TRUST_E_NOSIGNATURE originated in function Windows::WCP::SecureBoot::BasicInstaller::Install expression: ApplySecureBootUpdate( dwAvailableUpdates)

We have the same issue with our T640 servers on Windows Server 2019, also with the latest BIOS version 2.9.4. The Update fails on installation process, we have hidden the updates for the moment, so our servers don't spam with error messages.

Hello,

please can you make sure that you have the latest servicing stack update (SSU) installed?

You can check here the document released by microsoft.

https://bit.ly/3b0yxso

Thanks

Marco

On our servers, the latest SSU (KB4601393) is installed.

Unfortunately we don't have a fix for this, you should check with Microsoft if there is a patch or a fix for this.

Thanks

Marco

I am having the same problem with our Dell R440 Ready Nodes running Server 2019 and a R330 running Server 2016.  I get the same error in the CBS log.  I have other equipment that installed the update fine in the same environment but the ones that error out are all Dells.  It is becoming a bigger problem as it is interfering with other patches when it rolls back the failure and you cannot skip or hide the update.  The update has been unsuccessful for a month now, someone please look into this before too many vulnerabilities go unpatched.

Hello,

we escalated the issue internally, we will keep you update.

Thanks

Marco

i'm having the same issue with a r440 server 2019 installed. any hopes of a fix? thanks!

Just to add one more update.

All our R740xd failed to install the update, with windows server 2016 and 2019 storage spaces direct.

All our R940 and R730, with windows server 2016 and 2019 installed the update without issues.

Regards,

Eduardo Sousa

Same issue here with one of our R740xd, all firmware and drivers are updated with SUU-WIN64_20.12.200.458

Regards,

Eduardo Sousa

Hi,

As my colleague Marco said, this update issue have been escalated and we are waiting a feedback from our experts. We will publish a solution in this feed when it will be available.

Best regards,

Hello,

I was able to sort it out, probably not in a very orthodox way, but solved the problem in my R740xd servers.

1. I’ve downloaded the latest Windows Server ISO from Microsoft Volume License site.
2. Extracted install.wim from the ISO to be able to edit it.
3. Mounted it with Dism (dism /mount-wim /wimfile:f:\wim\install.wim /index:4 /mountdir:f:\mount)
4. Downloaded KB4535680 from Microsoft Catalog Update.
5. Extracted the .cab file from the. msu
6. Injected the .cab file in to the install.wim file (DISM /image:"F:\Mount" /Add-Package /Packagepath:f:\Updates)
Processing 1 of 1 - Adding package Package_for_KB4535680~31bf3856ad364e35~amd64~~10.0.1.0
[==========================100.0%==========================]
7. Unmounted the wim file and committed changes.
8. Performed in place upgrade on the affected servers (Server 2016 to 2016 and Server 2019 to 2019) keeping all files and settings.
9. After the upgrade ended the file C:\Windows\System32\SecureBootUpdates\dbxupdate.bin was updated to the latest version available in KB4535680, and the patch was detected as installed.

Regards,

Eduardo Sousa