Event details

Are you ready to experience seamless security updates with minimal disruption? Let’s dive into hotpatching for Windows 11, version 24H2 and Windows Server 2025 machines connected to Azure Arc! Hotpat...
Heather_Poulsen
Updated Mar 12, 2025
Technical Takeoff
SkipToTheEndpoint's avatar
SkipToTheEndpoint
Brass Contributor
Mar 03, 2025

Hotpatching should be for specific use-case devices, not everything. 

Additionally, regarding VBS being a pre-req, any device that has been installed with Win11 22H2 or later has HVCI and VBS enabled by default. You can also enable VBS via the Settings Catalog in Intune, and it's really poor that option wasn't shown in the video at all. Just don't assign it to devices or you'll get a reboot during Autopilot.

David_Callaghan's avatar
David_Callaghan
Former Employee
Mar 05, 2025

New Windows 11, version 24H2 PCs will have VBS enabled by default. A PC upgraded to Windows 11 24H2 will maintain the older OS's VBS config state. So be sure to check VBS status on upgraded machines or anytime you expect the device to receive the hotpatch update but it doesn't. Great feedback on using Intune to set the OS configuration settings.