How to prevent VM Window Server from rebooting after updates

michal 186 Reputation points
2023-03-15T17:59:13.9233333+00:00

Hi all,

could you please help me understand why my win server has rebooted even when configured as "do not reboot"?

My scenario:

  • Windows Server 2019 running in Azure 
  • In "UPDATE" section directly under the VM, there was no "Schedule" configured (as it does not allow me to create any due to "Virtual machines are greyed out because they were not set with automatic patch orchestration"
  • Patch orchestration is set to "Patch Orchestration: Automatic by OS"
  • I use "AUTOMATION -> Update management" for configuring updates for Azure VMs
    • here I have "Deployment Schedule" configured with "Never reboot" option selected and the updates should be performed every "Saturday"

Now... I'm not sure whether it works properly as I can see that last night, there were updates installed (so not on SATRUDAY as configured) and the VM with the Deployment Schedule above assigned got restarted as well....  I have a critical app running on that VM so would like to have it as "download and install + restart manually"... I the schedule in automation even applies if patch orchestration is set to "Automatic by OS"??

I'm a bit confused with all the update management options in Azure :).... which to use to have more flexibility. I've just now tried to configure servers under "Update Management Center", I've changed patch orchestration for that VM here to "Azure Orchestrated" and created a "deployment" for that VM, which has restart set to "NEVER REBOOT" and Maintenance scope "Guest (Azure VM, Arc-enabled VMs".... Would this work now so that the server is not restarted?

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,086 questions
Azure Automation
Azure Automation
An Azure service that is used to automate, configure, and install updates across hybrid environments.
1,111 questions
Azure Update Manager
Azure Update Manager
An Azure service to centrally manages updates and compliance at scale.
212 questions
{count} votes

1 answer

Sort by: Most helpful
  1. JimmySalian-2011 41,916 Reputation points
    2023-03-15T18:02:56.23+00:00

    Hi,

    There is a GPO setting for this to prevent restart after the Azure Automate VM updates or by WSUS updates, I had configured this in our environment to prevent reboots after updates during working hours. https://admx.help/?Category=Windows_10_2016&Policy=Microsoft.Policies.WindowsUpdate::ActiveHours

    Hope this helps.

    JS

    ==

    Please accept as answer and do a Thumbs-up to upvote this response if you are satisfied with the community help. Your upvote will be beneficial for the community users facing similar issues.