SCCM - Help with automatic deployment rule

Question

Hello all,

I am new to using Microsoft Endpoint Configuration Manager and have just setup a fresh install from scratch. I have installed the Endpoint client and can see that computers are now managed. I now want to keep Endpoint updated from SCCM. I have followed the MS guidance to create an automatic deployment rule. I have called this 'Endpoint Deployment'. The problem I have is I don't know how to deploy this to my collection.

When I created the ADR, it hasn't created a new software update group, so at the moment, all that's happening is every 24 hours, it creates a new Security Intelligence update that supersedes the last one.

Do I need to create a SUG and if so, how can I do this just once? I want it to automatically check for definitions every 24 hours then automatically deploy to to the clients in my collection called Win 10 Clients.

I have attached some screenshots that should help show what I have in place.

Any help with this would be greatly appreciated.

Answer 1

Hi @G O'Connor ,

If there is no items to show in this view, there is currently no suitable update in this ADR. We could not notice the tab of All Software Updates.

Here is a detailed article about create automatic deployment rule in SCCM, please refer to it:
https://www.prajwaldesai.com/create-automatic-deployment-rule-in-sccm/
Note: This is non-official Microsoft article just for your reference.

---

If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Answer 2

Hi @G O'Connor ,

We could select the tab of create a new software update group to add software updates to a new software update group in the tab of General.

Do I need to create a SUG and if so, how can I do this just once?

No, it needn't. When we create the ADR, the SCCM will create the SUG automatically.

I want it to automatically check for definitions every 24 hours then automatically deploy to to the clients in my collection called Win 10 Clients.

We could configure this setting like the following screenshot in the tab of Evaluation schedule:

---

If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Answer 3

Hi @G O'Connor ,

Please navigate to the tab of Deployment settings which is beside of the tab of summary, and then we could check the ADR is deployed to the collection, for example, I deploy it to the collection which named 'dd'. Please refer to the following screenshot:

---

If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Answer 4

Hello Amandayou-MSFT,

Thank you for replying, it is much appreciated.

If I right click on 'Automatic Deployment Rules' and select the option to create a new ADR, I see the screen you have shown but if I view the properties of the ADR I have already created, I can't see how I can confirm what collection it has been assigned to?

Answer 5

Thanks for replying, I missed that tab at the bottom!

It does shows it is being deployed to Win10 Clients but if I click on Software Updates/All Software Updates, under this same Deployment tab, it doesn't show the Collection.

Are these daily definitions shown on the screenshot underneath actually being deployed? It doesn't look like they are to me? It looks like they need to be downloaded? I want this all to be automatic.

Many Thanks again for all of your support with this.