5.2 KiB
title, ms.reviewer, manager, description, ms.prod, author, ms.author, ms.collection, ms.topic, ms.date
| title | ms.reviewer | manager | description | ms.prod | author | ms.author | ms.collection | ms.topic | ms.date |
|---|---|---|---|---|---|---|---|---|---|
| Update Compliance prerequisites | dougeby | Prerequisites for Update Compliance | w10 | mestew | mstewart | M365-analytics | article | 06/30/2022 |
Update Compliance prerequisites
(Applies to: Windows 11 & Windows 10)
Important
- As of August 17, 2022, a new step needs to be taken to ensure access to the preview version of Update Compliance and the CommercialID is no longer required. For more information, see Configure Update Compliance settings through the Microsoft 365 admin center.
- This information relates to a preview feature that's available for early testing and use in a production environment. This feature is fully supported but it's still in active development and may receive substantial changes until it becomes generally available.
Update Compliance prerequisites
Before you begin the process of adding Update Compliance to your Azure subscription, ensure you meet the prerequisites.
Azure and Azure Active Directory
- An Azure subscription with Azure Active Directory
- You must have either an Owner or Contributor Azure role as a minimum in order to add the Update Compliance solution.
- Devices must be Azure Active Directory-joined and meet the below OS, diagnostic, and endpoint access requirements.
- Devices that are Workplace joined only (Azure AD registered) aren't supported with Update Compliance.
Operating systems and editions
- Windows 11 Professional, Education, Enterprise, and Enterprise multi-session editions
- Windows 10 Professional, Education, Enterprise, and Enterprise multi-session editions
Update Compliance only provides data for the standard Desktop Windows client version and isn't currently compatible with Windows Server, Surface Hub, IoT, or other versions.
Windows client servicing channels
Update Compliance supports Windows client devices on the following channels:
- General Availability Channel
- Update Compliance counts Windows Insider Preview devices, but doesn't currently provide detailed deployment insights for them.
Diagnostic data requirements
At minimum, Update Compliance requires devices to send diagnostic data at Required level (previously Basic). Some queries in Update Compliance require devices to send diagnostic data at the following levels:
-
Optional level (previously Full) for Windows 11 devices
-
Enhanced level for Windows 10 devices
Note
Device names don't appear in Update Compliance unless you individually opt-in devices by using policy. The configuration script does this for you, but when using other client configuration methods, set one of the following to display device names:
- CSP: System/AllowDeviceNameInDiagnosticData
- Group Policy: Allow device name to be sent in Windows diagnostic data under Computer Configuration\Administrative Templates\Windows Components\Data Collection and Preview Builds
For more information about what's included in different diagnostic levels, see Diagnostics, feedback, and privacy in Windows.
Data transmission requirements
[!INCLUDE Endpoints for Update Compliance]
Note
Enrolling into Update Compliance from the Azure CLI or enrolling programmatically another way currently isn't supported. You must manually add Update Compliance to your Azure subscription.
Microsoft 365 admin center permissions
[!INCLUDE Update Compliance script error codes]
Log Analytics prerequisites
Log Analytics permissions
- To edit and write queries, we recommend the Log Analytics Contributor role.
- To read and only view data, we recommend the Log Analytics Reader role.
Log Analytics regions
Update Compliance can use a Log Analytics workspace in the following regions:
| Compatible Log Analytics regions |
|---|
| Australia Central |
| Australia East |
| Australia Southeast |
| Brazil South |
| Canada Central |
| Central India |
| Central US |
| East Asia |
| East US |
| East US 2 |
| Eastus2euap(canary) |
| France Central |
| Japan East |
| Korea Central |
| North Central US |
| North Europe |
| South Africa North |
| South Central US |
| Southeast Asia |
| Switzerland North |
| Switzerland West |
| UK West |
| UK south |
| West Central US |
| West Europe |
| West US |
| West US 2 |
Next steps
- Enable the Update Compliance solution in the Azure portal