Windows Autopatch vs. MECM or WSUS Windows Update for Business for deploying Update & patches?

EnterpriseArchitect 5,136 Reputation points

Hi All,

What are the differences between Windows Autopatch vs. MECM or WSUS for deploying Updates & patches?

My goal here is to be able to deploy Windows updates & patches globally without the need to establish a VPN connection to the Head Office for all 8000 users spread across different continents.

From this page, I can see that I am licensed for Intune however, the Windows auto patch may require additional licensing for agentless deployment or with Intune agent.

Any help would be greatly appreciated.

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,728 questions
0 comments No comments
{count} vote

2 answers

Sort by: Most helpful
  1. Jason Sandys 31,186 Reputation points Microsoft Employee

    This is not really a valid question. Autopatch is a managed service offering that leverages Windows Update for Business (and a couple of other mechanisms).

    If your goal is to enable updates for remote devices, this can easily be achieved using ConfigMgr by adding a CMG. You can also enable co-management and move the Windows Updates workload to Intune to leverage Windows Update for Business yourself.

    The advantage of Autopatch is not in the mechanism used, i.e. Windows Update for Business, but in the fact that it is a service managed by us (Microsoft) to deploy updates and uses telemetry and machine learning to increase success and satisfaction.

    As for your licensing question, there are a lot of "depends" answers so it's best to decide your strategy and then discuss licensing with a licensing expert.

    1 person found this answer helpful.

  2. Ranjithkumar Duraisamy 226 Reputation points

    May I know how are you thinking of patching servers without ConfigMgr?

    0 comments No comments