Event banner
Event details
122 Comments
- Does this include BIOS updates?
Thanks for participating in today's Windows updates in Intune: drivers, firmware, and Autopatch AMA! For reference, the panel covered this topic at around 44:00.
- All driver and firmware updates published to Windows Update are available through the service, this includes BIOS updates.
- Shoutout to Office servicing, I've moved thousands of devices to Monthly Enterprise without a single call. Will this stay separate from Windows Updates or move into Intune at any point to give a unified place for configuring updates?
- Bryan Keller
Microsoft
Intune enables you to manage the channel setting. The plan is for it to stay separate for the foreseeable future
- for autopatch, are there plans to assign validator options - i believe admin portal for office has this upcoming? can autopatch waves be pre-filtered (example - never allow C level staff in early rings - or any for that matter)
Thanks for your question ehoffs! The Autopatch groups feature addresses this situation by allowing the creation of 'Assigned' group distribution rings. You can read all about it here: https://learn.microsoft.com/en-us/windows/deployment/windows-autopatch/deploy/windows-autopatch-groups-manage-autopatch-groups#create-a-custom-autopatch-group
but the gist is - put those VIP devices into an AAD group and assign that AAD group to the 'Last ring' of your Autopatch group.
- Groups for Autopatch rings: \o/ This is critical for us. And the missing of that feature was e.g. a blocker for us to use Desktop Analytics. We have existing deployment rings created together w/ the business departments. E.g., the Finance department knows their most critical apps but also who is a tech savvy end-user and not shy to raise the hand if something fails in an early deployment ring. This feature should be standard in all areas that automatically define grouping.
Thanks for this feedback SigurdWerner - the team will be glad to hear you are enjoying the Autopatch groups feature public preview. Participating in communities, like the one at https://aka.ms/AutopatchCommunity and events like this are great ways to advocate for features you'd like to see, so please keep contributing, and thank you.
Are there any plans to allow Microsoft 365 Apps to be set as a pre-requisite (dependency) install for other apps? Currently if we need, for example, an Outlook plugin, we're having to use alternative methods to get this to work to ensure Outlook is installed beforehand.
- Bryan KellerReally good feedback. As you point out, the Office deployment channel and other app channels in Intune are separate, so there are creative ways to accomplish this, but agree it isn't covered first class by Intune. I'll talk to the team about adding this to the roadmap.
- Hi everyone, thank you for this opportunity Please my question is according to Microsoft Teams Rooms. We are adding newly about 305 MTRs to InTune (Ahold Delhaize group) , what are available options for this very specific Environment with specific "Update rings"?
David_GuyerI found this documentation for updating Microsoft Teams Rooms. The documentation appears to cover MTR based on Android, and not Windows... so if you have WIndows based MTR devices, this might not apply and I'd contact your hardware vendor for guidance. https://learn.microsoft.com/en-us/microsoftteams/devices/remote-updateDepends on the OS below the Teams Room Device. E.g., Surface Hub has its own OS (Windows 10 Team) updating on its own schedule and the Intune update ring policies don't work here.
- Thank you 🙂 ... It is very specific environment :)))
- Will we have full device analytics (ex. processor use/memory use logging per user device) alongside of the Autopatch function?
- How do you rollback updates? Are there reports to track?
- David_GuyerAt this time, we don't have a Windows Update for Business capability to rollback drivers. If you need to roll back a specific driver, my recommendation would be to develop a PowerShell script for detect and uninstall and use these in a Proactive Remediation. Depending on the OEM, different drivers may require different steps, but hopefully most of the time you can use PnPUtil: https://learn.microsoft.com/en-us/windows-hardware/drivers/devtest/pnputil-command-syntax I've not tested this very much, but I think you can use DeviceManager to find the DeviceInstancePath property, and then use PnPUtile /remove-device to remove that DeviceInstancePath. That completely removes it, rather than rolls it back.. and the next scan for updates should re-install the latest approved driver. I wouldn't use this without further testing for Network drivers, or if a user is active Monitors, Keyboards, Mice... Perhaps someone can help find a "rollback" command. HTH
Thanks for participating in today's Windows updates in Intune: drivers, firmware, and Autopatch AMA! For reference, the panel covered this topic at around 40:20.
- I am being naive.. This is my first session.. Can you advise when this will be available. We so badly need this option to manage our driver updates
- David_GuyerSoon! It's quality driven, and we are validating the last few fixes now. Keep an eye on https://aka.ms/WindowsITPro blog, or @UpdateDavidM on twitter for the release announcement!
- I have about 3000 devices used as checkout lanes and I usually have problems with MS default drivers, overriding the vendor-specific (certified drivers), especially for receipt printers and pin pads. I can see this might be a lifesaver so I can specifically approve each driver as I had on SCCM. However, we still struggle with quality updates because of the maintenance window and sometimes low BW availability on select locations. We had many cases where the machine restarted while a customer was taping his credit card. It means the store will deliver the goods and might not get paid. Is there anything in the roadmap to get absolute control on updates instead of just pushing policies and waiting for local Windows OS "goodwill"?
- David_GuyerUsing the right settings for your devices can make a big difference. Try https://aka.ms/SetThesePolicies for guidance on various situations. I might take a look at the Kiosks section of that blog for your scenario.
