What’s new in Microsoft Intune - 2304 (April) edition

Ramya_Chitrakar We are testing macOS update policies but want to understand what should I expect from Critical updates settings

Our goal is to get our macs updated to latest critical update based on the OS version installed (Monterey or Ventura) so We configured Critical updates to "install later" which according to MS Support should notify users about the critical update then users can defer once and then the critical update will be installed based on the current base OS, for instance a Mac running 12.6.1 must be updated to 12.6.5 and not upgraded to Ventura.

We have configured as suggested by support team (I can provide support case number if needed) but no critical updates are applied

I consider would be highly appreciated if mode details are added to the KB for macOS update policies: https://learn.microsoft.com/en-us/mem/intune/protect/software-updates-macos

For instance:

• Critical update = will these work based on base OS? or a Mac will be upgraded if latest critical update is on a version greater than the one currently installed 
• All other updates (OS, built-in apps) = what's included here? major and minor? how they will behave if I configure this settings?

• Download and install: What's the user experience?

• Download only: What's the user experience?

• Install immediately: Download the software update and trigger the restart countdown notification. This action is recommended for userless devices.

• Notify only: What's the user experience?

• Install later:What's the user experience?