Microsoft plans to release a new tool that will automation of the patch management processbut the elimination of Patch Tuesdays for many organizations.
The company’s new Windows Autopatch service will keep business computers constantly updated as part of a new feature included with the Windows Enterprise E3 subscription service.
Organizations running Windows 10 or Windows 11 Enterprise E3-licensed systems will be eligible for the new patch service, which is expected to be universally available in July.
“This service will keep Windows and Office software on registration endpoints up to date automatically, at no extra cost,” wrote Lior Bela, Microsoft’s senior product marketing manager. blogmail. “IT administrators can get time and resources to promote value. The second Tuesday of each month shall be ‘another Tuesday’. “
Patch Tuesday (more recently known as Tuesday Update) is a collective term used in the IT industry to refer to the time when Microsoft and others typically release on – the – spot repairs to their operating system and other software. Children’s Tuesday is always the second Tuesday of every month.
Microsoft said it is automating software updates in response to “the changing nature of technology.” For example, the pandemic has increased demand for more remote or hybrid work, making performance and security updates even more important, as systems outside an organization’s firewall are more frequent.
“IT administrators should immediately feel the value of not having to plan for roll-out and update sequencing, and in the long run because increased bandwidth gives them more time to focus on driving value,” Bela said. “Quality updates should improve device performance and reduce help desk tickets – feature updates should provide the best user experience, with increased time and new tools for creation and collaboration.”
Dan Wilson, senior research director at Gartner, said there is unmet demand for endpoint patch services as traditional outsourcing tends to favor more full – service offerings.
“Autopatch can address the common challenge of keeping up with Windows and Office updates. The $ 0 price should be attractive to test at least. Batching third – party applications is another challenge, but it’s not. That’s currently within the scope of Autopatch, “Wilson said in an e – mail reply to Computer world.
Windows Autopatch will be able to detect differences between endpoints, place them in four “test rings” or groups, and then check them dynamically for necessary updates.
First, there will be a “test ring” containing a minimum number of devices representative of each type of device and configuration being managed. The next ring is slightly larger, containing about 1% of all managed devices. The third “fast” ring contains about 9% of endpoints, while the other 90% of devices are assigned a “wide” ring. Percentages do not change as devices are added or removed from the service network.
The point of the four rings is to ensure that there are no firmware or software update related software issues. As each group passes the tests, the updates are installed until all the organization’s devices are carved out.
Wilson noted that Autopatch follows best practices for ring-based deployment being able to stop and roll back if issues arise, and minimum license requirements (Windows E3 or higher) should not be an issue “as or are upgrading to Microsoft 365. bundles that include this.”
“And the requirement to be registered or co-managed by Intune and Azure should not be a major concern at this point,” Wilson said. “Is Autopatch better or not than leveraging automated update capabilities already within Microsoft Endpoint Manager, Windows Update for Business and the Office 365 admin console, Wilson said.” They try to address that on their Windows Autopatch Frequently Asked Questions Pagehe said.
Windows Autopatch will manage all aspects of device group deployment for Windows 10 and Windows 11 quality and feature updates, drivers, firmware, and Microsoft 365 Apps for enterprise updates, Bela said.
In terms of endpoint management, the main prerequisite for Autopatch is Intune or joint management. The service has a built-in readiness assessment tool that will check relevant settings in Intune, Azure Active Directory, and Microsoft 365 Apps for Enterprise to see if they are configured to work with Autopatch.
The online tool checks all organization settings in Microsoft Endpoint Manager – specifically, Microsoft Intune, Azure Active Director and Microsoft 365 – to ensure that they work with the Autopatch service. If any settings come up as “not ready” the service has click-through instructions on how to fix problems, Microsoft said.
“After consenting, Microsoft automatically completes all other steps for you, and manages to create the right policies and groups so that updates are ready for deployment,” said Mark Florida, Microsoft’s chief engineering product manager in video presentation. “Talk about saving time. Imagine you configure the policy and group definitions yourself. ”
Copyright © 2022 IDG Communications, Inc.
Microsoft killed Patch Tuesday for some enterprise users
Source link Microsoft killed Patch Tuesday for some enterprise users