How to patch machine from Intune

lalajee 1,811 Reputation points
2023-11-28T16:51:41.8066667+00:00

Hi,

I'm testing device to receive updates from intune but not sure if I have configure it properly

On Config Mgr -> \Administration\Overview\Cloud Services\Cloud Attach

User's image

Set the bar to Pilot and create an collection added test machine to this collection and this collection to staging.

In Intune, Create new policy

User's image

Link to group which has this test device.

Its been more than an week and test device not received any patching (Test Device is missing Nov Patching)

We do have gpo to block any updates from Microsoft applies to all windows 10 devices

User's image

User's image

Microsoft Configuration Manager Updates
Microsoft Configuration Manager Updates
Microsoft Configuration Manager: An integrated solution for for managing large groups of personal computers and servers.Updates: Broadly released fixes addressing specific issue(s) or related bug(s). Updates may also include new or modified features (i.e. changing default behavior).
1,005 questions
Microsoft Intune Configuration
Microsoft Intune Configuration
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Configuration: The process of arranging or setting up computer systems, hardware, or software.
1,789 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,692 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Crystal-MSFT 45,896 Reputation points Microsoft Vendor
    2023-11-29T01:27:55.3666667+00:00

    @lalajee, Thanks for posting in Q&A. For the affected device, please firstly check on Intune portal to see if the device is co-management and the windows update workload is on Intune.

    User's image

    Meanwhile, I notice GPO is also configured on the device, based as I know, GPO will take precedence over Intune policy. Please remove the GPOs from these devices.

    After that, refer to the following article to see if the policy has been applied to the device successfully and if the related registry keys are changed on the device:

    https://techcommunity.microsoft.com/t5/intune-customer-success/support-tip-troubleshooting-windows-10-update-ring-policies/ba-p/714046#:~:text=Support%20Tip%3A%20Troubleshooting%20Windows%2010%20Update%20Ring%20Policies,getting%20applied%20on%20the%20client%3F%20...%20See%20More.

    Please try the above suggestion and if there's any update, feel free to let us know.


    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    1 person found this answer helpful.