Forum Discussion
Solved
Help with GPO/Update settings - Auto Download, Auto Install, Defer Reboot for specific day/time
Hi MS Tech Community family. I have been asked to setup a very specific update schedule using GPO whilst we seek other patching options. As far as I can tell this isn't possible using GPO, howev...
Hi Chris_Coates,
I'll let AriaUpdated respond to the core details here although deadlines will get you most of what you want (see Enforce compliance deadlines with policies in Windows Update for Business (Windows 10) - Windows Deployment | Microsoft Docs). For your comment of possibly requiring Intune or ConfigMgr to accomplish this, keep in mind that Intune is just a policy engine for Windows Update for Business so doesn't add any actual capabilities for Windows update deployment although you could go overboard and create something custom using scripts or proactive remediations.
AriaUpdated
Microsoft
Microsoft- optional updates are NOT automatically downloaded unless you are in Release Preview. If you want to take every single optional update I'd recommend joining Release Preview.
- By default all updates that are automatically offered will download and install automatically.
- By default users will be shown a notification once pending reboot.
- Which shutdown/restart options? I am not sure what you are asking for here... or why?
- So you want to notify the user, but not actually force the reboot or automatically restart overnight until a specific day/time? That is possible, but really not recommended as it will both slow compliance and provide a worse end user experience. If you insist on doing this, then you can use Configure Automatic Updates and set "Schedule install" and configure to the day, time, week you want. Then don't set any other policies and the device will automatically download, install, notify the user, and only force the restart at that time. The only thing this doesn't accomplish is the "Remove normal shutdown/restart options", though partially since I am not sure what that means.
- By default all updates that are automatically offered will download and install automatically.
- By default users will be shown a notification once pending reboot.
- Which shutdown/restart options? I am not sure what you are asking for here... or why?
- So you want to notify the user, but not actually force the reboot or automatically restart overnight until a specific day/time? That is possible, but really not recommended as it will both slow compliance and provide a worse end user experience. If you insist on doing this, then you can use Configure Automatic Updates and set "Schedule install" and configure to the day, time, week you want. Then don't set any other policies and the device will automatically download, install, notify the user, and only force the restart at that time. The only thing this doesn't accomplish is the "Remove normal shutdown/restart options", though partially since I am not sure what that means.