How to patch machine from Intune

Question

Hi,

I'm testing device to receive updates from intune but not sure if I have configure it properly

On Config Mgr -> \Administration\Overview\Cloud Services\Cloud Attach

Set the bar to Pilot and create an collection added test machine to this collection and this collection to staging.

In Intune, Create new policy

Link to group which has this test device.

Its been more than an week and test device not received any patching (Test Device is missing Nov Patching)

We do have gpo to block any updates from Microsoft applies to all windows 10 devices

Answer 1

@lalajee, Thanks for posting in Q&A. For the affected device, please firstly check on Intune portal to see if the device is co-management and the windows update workload is on Intune.

Meanwhile, I notice GPO is also configured on the device, based as I know, GPO will take precedence over Intune policy. Please remove the GPOs from these devices.

After that, refer to the following article to see if the policy has been applied to the device successfully and if the related registry keys are changed on the device:

https://techcommunity.microsoft.com/t5/intune-customer-success/support-tip-troubleshooting-windows-10-update-ring-policies/ba-p/714046#:~:text=Support%20Tip%3A%20Troubleshooting%20Windows%2010%20Update%20Ring%20Policies,getting%20applied%20on%20the%20client%3F%20...%20See%20More.

Please try the above suggestion and if there's any update, feel free to let us know.

---

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.