cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Is there a way to update users computers via intune?

BBI-Kyle
Copper Contributor

‎Jun 17 2021 09:05 AM

‎Jun 17 2021 09:05 AM

Is there a way to update users computers via intune?

Is there a way to set up a policy via intune or Active Directory that automates Windows updates for all our end user computers?

 

 

2,150 Views
0 Likes
7 Replies
Reply
7 Replies
Aria Carley

‎Jun 17 2021 09:21 AM

‎Jun 17 2021 09:21 AM

RE: Is there a way to update users computers via intune?

Yes. You can definitely configure policy such that devices are automatically updated. Further, that is also the default behavior as well..
0 Likes
Reply
Kay_Toma

‎Jun 17 2021 09:24 AM

‎Jun 17 2021 09:24 AM

Re: Is there a way to update users computers via intune?

Hi @BBI-Kyle , Within Intune you can create Win10 device update rings. Within the update ring there are policy settings regarding the update process. We recommend you do not change any of the default settings. As you create the update ring you can add a device group of the group of devices you want to get updated by Windows Update. Check out the below for a walkthrough!

 

Configure Windows 10 update rings policy in Intune - Azure | Microsoft Docs

1 Like
Reply
BBI-Kyle

‎Jun 17 2021 09:41 AM - edited ‎Jun 17 2021 11:53 AM

‎Jun 17 2021 09:41 AM - edited ‎Jun 17 2021 11:53 AM

Re: Is there a way to update users computers via intune?

@Kay_Toma Will this work on computers that are not currently connected to our Domain Network?

For example,
John Doe brings his computer home and we sent out a trigger to update computers that are part of the update ring. Will his computer be updated? Also, will the end-users have the ability to cancel or delay the updates triggered by update ring?

0 Likes
Reply
Kay_Toma

‎Jun 17 2021 12:19 PM

‎Jun 17 2021 12:19 PM

Re: Is there a way to update users computers via intune?

As long as the devices are enrolled in Intune and Azure AD Joined, the devices will be able to take the updates from home even when not connected to your domain network. In your example, assuming John Doe's computer is enrolled in Intune (and hence Azure AD Joined), his device will be updated.

End users have the ability to pause an update for up to 35 days which they can set by going into Windows Update settings.
1 Like
Reply
BBI-Kyle

‎Jun 17 2021 12:30 PM

‎Jun 17 2021 12:30 PM

Re: Is there a way to update users computers via intune?

@Kay_Toma Can users keep delaying the update more than 35 days? Is there any way we can force end users computers to update? I'm asking because we're trying to get users computers updated as much as possible to prevent any potential security risks or issues.
0 Likes
Reply
best response confirmed by BBI-Kyle (Copper Contributor)
Kay_Toma

‎Jun 17 2021 12:50 PM

‎Jun 17 2021 12:50 PM

Solution

Re: Is there a way to update users computers via intune?

That's a great question! While we recommend you maintain the default settings, the one setting we do recommend you set it deadline. Configuring deadline will enforce users to have to take the update within X number of days you specify. If a user pauses the update, the deadline counter will start once the the pause has ended so that the user has to take the update after pause. End users will be offered a chance to update through a walkthrough before the device is forced to update and reboot. You can check out more details about setting a compliance deadline and the end user experience here: https://docs.microsoft.com/en-us/windows/deployment/update/wufb-compliancedeadlines
1 Like
Reply
David_Guyer

‎Jun 18 2021 01:32 PM

‎Jun 18 2021 01:32 PM

Re: Is there a way to update users computers via intune?

I can help a little here. When pause is set via policy, such as by an admin using Intune or a local admin use GPEdit, the default pause will be for 35 days, or until the pause is removed by the admin. However, when updates are paused using the Windows Update settings in Windows, the pause lasts only 7 days and the device must scan and successfully install any offered updates before they can pause again.

Hope this helps
-DG
0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by BBI-Kyle (Copper Contributor)
Kay_Toma

‎Jun 17 2021 12:50 PM

‎Jun 17 2021 12:50 PM

Solution

Re: Is there a way to update users computers via intune?

That's a great question! While we recommend you maintain the default settings, the one setting we do recommend you set it deadline. Configuring deadline will enforce users to have to take the update within X number of days you specify. If a user pauses the update, the deadline counter will start once the the pause has ended so that the user has to take the update after pause. End users will be offered a chance to update through a walkthrough before the device is forced to update and reboot. You can check out more details about setting a compliance deadline and the end user experience here: https://docs.microsoft.com/en-us/windows/deployment/update/wufb-compliancedeadlines

View solution in original post

1 Like
Reply