CompTIA Server+ SK0-005 Practice Question
An administrator is troubleshooting why a standalone file server has stopped receiving the company's regularly scheduled security updates from WSUS. Tests confirm that WSUS connectivity and network access are normal. The host runs Windows Server 2012 R2 Datacenter, and WindowsUpdate.log contains the message "This operating system version is no longer supported." In addition, the newest version of the third-party backup agent refuses to install because it "requires Windows Server 2019 or later." The physical server model is still listed on the vendor's current hardware-compatibility list, and management wants the least possible downtime for the file shares.
Which action provides the best long-term remediation for both patching and third-party software support?
Perform an in-place upgrade of the server to a currently supported Windows Server LTSC release (for example, Windows Server 2022) while preserving roles and data.
Manually download individual security hotfixes from the Microsoft Update Catalog each month and install them with PowerShell.
Leave the existing OS in place but block all internet traffic to and from the host at the perimeter firewall.
Enroll the server in Microsoft's paid Extended Security Updates (ESU) program to continue receiving critical patches until 2026.