AMA: Windows update and driver management

No although I'm not exactly sure what you mean by "Autopatching". Autopatch is a service that delivers updates to Windows devices that all update delivery from the cloud is "Autopatching". Is there a specific scenario or challenge you are concerned about?

Hotpatch is fully compatible with Autopatch. Hotpatch updates | Microsoft Learn

We recently announced Windows 11 25H2 will be an enablement package to Windows 11 24H2. At this time, we have nothing to disclose for future releases. I'm unsure what you mean by "reinstall the systems". 

In Windows Autopatch Update policy per ring, there is a setting "Option to check for Windows updates" - check out the official setting documentation here Windows Update settings you can manage with Intune Update Ring policies for Windows 10/11 devices. | Microsoft Learn 

Let's split your ask into two separate asks - Lenovo drivers being one ask, BIOS/UEFI updates as another. In terms of driver management, in Autopatch you can configure your driver approvals to be Automatic for one or more rings. https://learn.microsoft.com/en-us/windows/deployment/windows-autopatch/manage/windows-autopatch-manage-driver-and-firmware-updates covers the details about how to set Automatic approval for a ring. If all of your devices are from Lenovo, this is pretty easy - all of your rings would have Automatic driver approval. If you have a mix of Lenovo and other devices, and only want to Automatically approve your Lenovo drivers, then you would need to do some ring construction to keep Lenovo devices across one set of rings with automatic driver approval, and then your other devices in a different set of rings with manual driver approval. Now, when it comes to BIOS/UEFI, these types of driver updates are always going to require manual approval. These drivers show up in the "Other drivers" tab of your list of drivers to approve. You will need to decide which BIOS/UEFI drivers you want to install and then approve them.

There is a feature update failures (Operational) report Use Windows Update for Business reports for Windows Updates in Microsoft Intune - Microsoft Intune | Microsoft Learn that you can dive into and individual device errors should have an alert message coupled with full details including how to remediate the issue. Hope this helps.

Thanks for your participation! The panelists covered your question at 9:58.

Thanks for your question! The panelists covered this topic at 1:48 in today's live session. 

Schedule Install is the best practice we recommend and the driver policies should land on devices. Please share your logs and screenshots via Feedback Hub for further investigation-->Send feedback to Microsoft with the Feedback Hub app - Microsoft Support

Im interested in that too. WUfB is such a nice Feature, but the described experience is killing the good impression.

Which OEM specific updates including drivers and firmware that are offered are ultimately up to the OEM and not Microsoft. If there is a driver or firmware version missing for devices in your organization, you should contact your OEM as they are in complete control of publishing.

My recent Lenovo X1 Carbon for example had its BIOS updated few days ago, with a 3 months old BIOS version, and it was deployed through Intune/WUfB. A newer from mid-June is already available on Lenovo website, but if you ask me as a simple user : I am happy to know it works already so good.