Share via

on-prem AD joined patch management solutions

crib bar 846 Reputation points
2024-05-09T12:36:38.76+00:00

Which are the most common (modern) patch-management tools used in a corporate environment to patch modern versions of Windows (and MS server/desktop apps) installed on desktops/laptops/servers still joined to a traditional on-premises active directory environment?

From what I understand, InTune is a common solution for applying security updates to corporate devices joined to Entra, but I was interested to learn a bit more on what are the common solutions for patching on-prem joined devices (desktops and servers).

Windows for business | Windows Client for IT Pros | Devices and deployment | Configure application groups
Windows for business | Windows Client for IT Pros | User experience | Other
Microsoft Security | Intune | Other
Accepted answer
  1. Marcin Policht 51,365 Reputation points MVP Volunteer Moderator
    2024-05-09T12:45:09.7933333+00:00

    Configuration Manager could be used as a stand-alone solution or can be integrated with Intune. More at https://learn.microsoft.com/en-us/mem/configmgr/core/understand/introduction

    However, a number of customers are using less elaborate solutions - such as, for example, WSUS ( Configuration Manager also relies on WSUS). More at https://learn.microsoft.com/en-us/windows/deployment/update/waas-manage-updates-wsus

    If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.

    hth

    Marcin

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.