Windows Update for Business Deployment Service will automatically apply preventive saves for suspected patches –


Windows Update for Business Deployment Service will automatically apply a protective stop for suspected patches

Microsoft this week began providing a further explanation of Windows Update for its Business Deployment Service, with a focus on Safeguard Holds.

Preventive stops are temporary software repair blocks, usually instigated by Microsoft in an automated process. Patch blocks are applied when Microsoft Telemetry information indicates that Windows 10 or Windows 11 systems experienced problems after a software update was applied.

Microsoft also has an automated process to prevent patching of so-called “potential” questionable patches, as determined by machine learning algorithms. The announcement clarified that automated blocking of potentially problematic patches is only available to organizations using Windows Update for Business Deployment Service.

Microsoft also offers Windows Update for Business, a set of cloud-based policies for managing updates. It is allowed to manually set the protective sandbox for the suspected problematic patch. However, Windows Update for Business users don’t get the same kind of automatic blocking of suspicious patches that come by default with Windows Update for Business Deployment Service.

Consumer guinea pigs
Microsoft derives information about potential debugging issues from consumers and unmanaged Windows devices, using machine learning algorithms. These users are basically Microsoft “guinea pig” testers, and they are used to help find Windows debugging issues before they reach organizations.

Here’s how he publicized this idea:

In addition to preventative reservations for known issues, the deployment service uses machine learning (ML) that is performed across the millions of unmanaged commercial and consumer PCs daily that install the upgrade. It looks for any evidence of rollback during setup, app or driver malfunction, graphics, audio or connectivity issue, etc. When upgrading issues like this surface, ML detects this correlation between hardware and software properties to identify and automatically protects a larger group of devices that have not yet started to upgrade.

The blocking information Microsoft derives from this process is device specific. Patches that are marked as valid for delivery to other computers that do not fit the specified hardware and software profile may be considered valid.

It’s not clear why Microsoft has not extended the automatic update ban for bad software to users of Windows Update for Business, who are presumably experiencing the same issues with a corrupt patch as Windows Update for Business Deployment Service users.

Microsoft has information sharing hardware requirements, though, for organizations that want to use Windows Update for their business deployment service, which are:

Windows Update for Business Deployment Service Release Status
Preventive protections have been around for two years, but Windows Update for Business Deployment is more of an emerging service.

In March, Microsoft described a scaling feature on Windows Update for its Business Deployment Service. It’s designed to help organizations install Windows 10 or Windows 11 “feature updates” (which are new operating system versions) for their devices in a phased process. Organizations can use the incremental rollout approach to better isolate Windows upgrade issues with a smaller group of users before a broader rollout.

In its March announcement, Microsoft suggested that a public preview of Windows Update for the Business Deployment Service with all of its capabilities, including Microsoft Intune and Microsoft Graph capabilities, would be available as a “public preview in July 2022,” and would be available offered as an “open web application.” The entire source.

It appears that the target release planned for July 2022 to preview Windows Update for Business Deployment Service has been skipped. Exactly when public preview will be available is not described, due to the late schedule.

Microsoft’s “Overview” document about Windows Update for Business Deployment Service, dated June 16, 2022, did not indicate the product’s release status or when a public preview would be available.

About the author

Kurt McKee is Senior News Producer for 1105 Media’s Converge360 Group.

#Windows #Update #Business #Deployment #Service #automatically #apply #preventive #saves #suspected #patches #Redmondmagcom

Leave a Comment

Your email address will not be published.