4.5 KiB
title, description, ms.date, ms.prod, ms.technology, ms.topic, ms.localizationpriority, author, ms.author, manager, msreviewer
| title | description | ms.date | ms.prod | ms.technology | ms.topic | ms.localizationpriority | author | ms.author | manager | msreviewer |
|---|---|---|---|---|---|---|---|---|---|---|
| Maintain the Windows Autopatch environment | This article details how to maintain the Windows Autopatch environment | 07/11/2022 | w11 | windows | how-to | medium | tiaraquan | tiaraquan | dougeby | hathind |
Maintain the Windows Autopatch environment
After you've completed enrollment in Windows Autopatch, some management settings might need to be adjusted. Use the following steps:
- Review the Microsoft Intune settings described in the following section.
- If any of the items apply to your environment, make the adjustments as described.
Note
As your operations continue in the following months, if you make changes after enrollment to policies in Microsoft Intune, Azure Active Directory, or Microsoft 365 that affect Windows Autopatch, it's possible that Windows Autopatch could stop operating properly. To avoid problems with the service, check the specific settings described in Fix issues found by the readiness assessment tool before you change the policies listed there.
Microsoft Intune settings
| Setting | Description |
|---|---|
| Update rings for Windows 10 or later | For any update rings for Windows 10 or later policies you've created, exclude the Modern Workplace Devices - All Azure AD group from each policy. For more information, see Create and assign update rings. Windows Autopatch will also have created some update ring policies. all of which The policies will have "Modern Workplace" in the name. For example:
When you update your own policies, ensure that you don't exclude the Modern Workplace Devices - All Azure AD group from the policies that Windows Autopatch created. To resolve the Not ready result: After enrolling into Autopatch, make sure that any update ring policies you have exclude the Modern Workplace Devices - All Azure Active Directory (AD) group.For more information, see Manage Windows 10 software updates in Intune. To resolve the Advisory result:
For more information, see Manage Windows 10 software updates in Intune. |
Windows Autopatch configurations
Windows Autopatch deploys, manages and maintains all configurations related to the operation of the service, as described in Changes made at tenant enrollment. Don't make any changes to any of the Windows Autopatch configurations.
Windows Autopatch tenant actions
The Tenant management blade can be found by navigating to Tenant administration > Windows Autopatch > Tenant management.
Important
Starting October 12, 2022, Windows Autopatch will manage your tenant with our first party enterprise applications. If your tenant is still using the Windows Autopatch service accounts, your Global admin must take action in the new Windows Autopatch Tenant management blade to approve the configuration change. To take action or see if you need to take action, visit the Tenant management blade in the Windows Autopatch portal.
The type of banner that appears depends on the severity of the action. Currently, only critical actions are listed.
Tenant action severity types
| Severity | Description |
|---|---|
| Critical | You must take action as soon as possible. If no action is taken, the Windows Autopatch service may be affected. |