CFR (Controlled Feature Rollout) only targets client devices and doesn't help with gaining confidence on servers. Servers often send little or no diagnostic data to know if the updates are proceeding as expected and that limits Microsoft's ability to add servers to the High Confidence data. That means servers should be monitored and certificates should be deployed as part of managing them.

One exception is with virtualized environments where both clients and servers are running on virtualization (VMware, Hyper-V, Azure, etc.). As of the June release, there were a significant number of virtualization solutions added to the High Confidence database and in these cases, the updates may automatically apply to High Confidence VMs.