![Full Logo.png]](https://help.devicie.com/hs-fs/hubfs/Full%20Logo.png?height=30&name=Full%20Logo.png){kind=small}
Windows OS Patching
Overview:
The Devicie Windows Operating System template provides configuration to ensure Windows endpoints are receiving updates in a timely manner. Feature and Quality updates will be automatically installed within two days. Quality updates are deferred for 14 days; Feature updates are deferred for 90 days. Windows drivers and Microsoft product updates are also deployed, where possible.
Intune Description:
Windows updates. Quality 14-day deferral, Feature 90-day deferral.
Scope:
This baseline should be applied to Users.
Policy Impact Areas:
When deployed, this policy will impact:
-
Enforcing Windows updates. Enforced within 2 days. Quality updates with 14-day deferral period, feature updates with 90-day deferral period.
Deployment Notes
-
Pre-Deployment Considerations:
-
Consider risk appetite for Windows update time to delivery. Alternate templates may be used with different timelines
-
-
Post-Deployment Validation:
-
Verify Windows active hours are set to 8am-5pm
-
Known Issues and Resolutions
-
Issue 1: None at this time
-
Resolution: N/A
-
Configuration Settings:
|
Name |
Value |
|
Settings |
|
|
Update settings |
|
|
Microsoft product updates |
Allow |
|
Windows drivers |
Allow |
|
Quality update deferral period (days) |
14 |
|
Feature update deferral period (days) |
90 |
|
Upgrade Windows 10 devices to Latest Windows 11 release |
No |
|
Set feature update uninstall period (2 - 60 days) |
30 |
|
Enable pre-release builds |
Not configured |
|
User experience settings |
|
|
Automatic update behavior |
Auto install and restart at maintenance time |
|
Active hours start |
8 AM |
|
Active hours end |
5 PM |
|
Restart checks (EDU Restart) |
Allow |
|
Option to pause Windows updates |
Disable |
|
Option to check for Windows updates |
Enable |
|
Change notification update level |
Use the default Windows Update notifications |
|
Use deadline settings |
Allow |
|
Deadline for feature updates |
2 |
|
Deadline for quality updates |
2 |
|
Grace period |
0 |
|
Auto reboot before deadline |
No |
|
Devicie Template Name |
Windows OS Patching (User) |
|
Default Intune Deployed Name |
Devicie - Windows OS Patching (User) |
|
Version |
3 |
|
Template Last Updated |
Nov 18, 2024 |
|
Document Last Updated: |
Jul 24, 2025 |