![Full Logo.png]](https://help.devicie.com/hs-fs/hubfs/Full%20Logo.png?height=30&name=Full%20Logo.png){kind=small}
Windows OS Patching - Pilot
Overview
The Windows OS Patching - Pilot template provides configuration to ensure Windows endpoints are receiving updates in a timely manner. Feature and Quality updates will be automatically installed within two days. Quality updates are deployed upon release; Feature updates are deferred for 30 days. Windows drivers and Microsoft product updates are also deployed, where possible.
Intune Description:
Windows updates. Quality 0-day deferral, Feature 30-day deferral.
Scope:
This baseline should be applied to devices.
Policy Impact Areas:
When deployed, this policy will impact:
-
Enforcing Windows updates. Enforced within 2 days. Quality updates with 0 day deferral period, feature updates with 30 day deferral period. A reboot will be forced aligned to the update deadlines.
Deployment Notes
-
Pre-Deployment Considerations:
-
Consider risk appetite for Windows update time to delivery. Alternate templates may be used with different timelines
-
-
Post-Deployment Validation:
-
Verify Windows active hours are set to 8am-5pm
-
Known Issues and Resolutions
-
Issue 1:
-
Resolution:
-
Configuration Settings:
|
Settings |
|
|
Update settings |
|
|
Microsoft product updates |
Allow |
|
Windows drivers |
Allow |
|
Quality update deferral period (days) |
0 |
|
Feature update deferral period (days) |
30 |
|
Upgrade Windows 10 devices to Latest Windows 11 release |
No |
|
Set feature update uninstall period (2 - 60 days) |
30 |
|
Enable pre-release builds |
Not configured |
|
User experience settings |
|
|
Automatic update behavior |
Auto install and restart at maintenance time |
|
Active hours start |
8 AM |
|
Active hours end |
5 PM |
|
Restart checks (EDU Restart) |
Allow |
|
Option to pause Windows updates |
Disable |
|
Option to check for Windows updates |
Enable |
|
Change notification update level |
Use the default Windows Update notifications |
|
Use deadline settings |
Allow |
|
Deadline for feature updates |
2 |
|
Deadline for quality updates |
2 |
|
Grace period |
0 |
|
Auto reboot before deadline |
No |
|
Devicie Template Name |
Windows OS Patching - Pilot |
|
Default Intune Deployed Name |
|
|
Version |
3 |
|
Template Last Updated |
Jul 8, 2025 |
|
Document Last Updated: |
Jul 8, 2025 |