Visual C++ and general update patching via Intune

%3CLINGO-SUB%20id%3D%22lingo-sub-2814693%22%20slang%3D%22en-US%22%3EVisual%20C%2B%2B%20and%20general%20update%20patching%20via%20Intune%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2814693%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20have%20just%20recently%20had%20an%20issue%20due%20to%20Visual%20C%2B%2B%20not%20being%20up%20to%20date%20breaking%20an%20application%20update.%20We%20used%20to%20be%20able%20to%20deploy%20C%2B%2B%20security%20updates%20via%20SCCM%20Software%20Updates%2C%20but%20I%20do%20not%20see%20this%20type%20of%20behavior%20in%20Intune%2FEndpoint%20Manager.%20I%20am%20fine%20with%20the%20general%20lack%20of%20granularity%20we%20had%20with%20SCCM%2C%20but%20from%20what%20I%20can%20see%2C%20there%20are%20a%20lot%20of%20updates%20Intune%20is%20not%20deploying.%26nbsp%3B%20How%20can%20we%20change%20Intune%20to%20bridge%20this%20gap%3F%26nbsp%3B%20I%20have%20seen%20various%20scripts%20to%20package%20and%20update%20C%2B%2B%2C%20but%20it%20seems%20to%20me%20that%20there%20should%20be%20a%20native%26nbsp%3B%20way%20to%20update%20directly%20in%20Intune%20without%20all%20these%20extra%20apps%20to%20be%20packaged%20and%20deployed.%26nbsp%3B%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAn%20additional%20ask%20would%20be%20the%20granular%20type%20reports%20from%20Intune%20on%20the%20updates%20it%20is%20deploying%20instead%20of%20the%20summaries%20that%20have%20no%20level%20of%20detail%20about%20what%20is%20missing.%26nbsp%3B%20We%20should%20also%20be%20able%20to%20rate%20a%20machines%20compliance%20based%20on%20not%20having%20recent%20udpates.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2814693%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Device%20Management%20(MDM)%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESoftware%20Management%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
New Contributor

We have just recently had an issue due to Visual C++ not being up to date breaking an application update. We used to be able to deploy C++ security updates via SCCM Software Updates, but I do not see this type of behavior in Intune/Endpoint Manager. I am fine with the general lack of granularity we had with SCCM, but from what I can see, there are a lot of updates Intune is not deploying.  How can we change Intune to bridge this gap?  I have seen various scripts to package and update C++, but it seems to me that there should be a native  way to update directly in Intune without all these extra apps to be packaged and deployed.  

 

An additional ask would be the granular type reports from Intune on the updates it is deploying instead of the summaries that have no level of detail about what is missing.  We should also be able to rate a machines compliance based on not having recent udpates.

1 Reply
You have got Supersedence.... Maybe ut could work https://docs.microsoft.com/en-us/mem/intune/apps/apps-win32-supersedence

But I am note sure about the outcome... as for me its a 50/50 if its working :) .. Most of the times I try the supersedence first...if that ain't working... just a powershell script which unisntalls the app with msiexec first and then installs it again....