What is Windows Autopatch?

Windows Autopatch is a cloud service that automates Windows, Microsoft 365 Apps for enterprise, Microsoft Edge, and Microsoft Teams updates to improve security and productivity across your organization.

Unique to Windows Autopatch

Rather than maintaining complex digital infrastructure, businesses want to focus on what makes them unique and successful. Windows Autopatch offers a solution to some of the challenges facing businesses and their people today:

  • Close the security gap: Windows Autopatch keeps software current, there are fewer vulnerabilities and threats to your devices.
  • Close the productivity gap: Windows Autopatch adopts features as they're made available. End users get the latest tools to amplify their collaboration and work.
  • Optimize your IT admin resources: Windows Autopatch automates routine endpoint updates. IT pros have more time to create value.
  • On-premises infrastructure: Transitioning to the world of software as a service (SaaS) allows you to minimize your investment in on-premises hardware since updates are delivered from the cloud.
  • Onboard new services: Windows Autopatch makes it easy to enroll and minimizes the time required from your IT Admins to get started.
  • Minimize end user disruption: Windows Autopatch releases updates in sequential deployment rings, and responding to reliability and compatibility signals, user disruptions due to updates are minimized.

Windows Autopatch helps you minimize the involvement of your scarce IT resources in the planning and deployment of updates for Windows, Microsoft 365 Apps, Microsoft Edge or Teams. Windows Autopatch uses careful rollout sequences and communicates with you throughout the release, allowing your IT Admins can focus on other activities and tasks.

Update management

The goal of Windows Autopatch is to deliver software updates to registered devices; the service frees up IT and minimizes disruptions to your end users. Once a device is registered with the service, Windows Autopatch takes on several areas of management:

Management area Service level objective
Windows quality updates Windows Autopatch aims to keep at least 95% of eligible devices on the latest Windows quality update 21 days after release.
Windows feature updates Windows Autopatch aims to keep at least 99% of eligible devices on a supported version of Windows so that they can continue receiving Windows feature updates.
Microsoft 365 Apps for enterprise Windows Autopatch aims to keep at least 90% of eligible devices on a supported version of the Monthly Enterprise Channel (MEC).
Microsoft Edge Windows Autopatch configures eligible devices to benefit from Microsoft Edge's progressive rollouts on the Stable channel.
Microsoft Teams Windows Autopatch allows eligible devices to benefit from the standard automatic update channel.

For each management area, there's a set of eligibility requirements that determine if the device receives that specific update. An example of an eligibility criteria is that the device must have access to the required network endpoints for the Windows update. It's your responsibility to ensure that devices are meeting eligibility requirements for each management area.

To determine if we're meeting our service level objectives, all eligible devices are labeled as either "Healthy" or "Unhealthy". Healthy devices are meeting the eligibility requirements for that management area and unhealthy devices aren't. If Windows Autopatch falls below any service level objective for a management area, an incident is raised. Then, we bring the service back into compliance.

Windows Autopatch monitors in-progress updates. Depending on the criticality of the update, the service may decide to expedite the update. If we detect an issue during release, we may pause or roll back the update. Since each management area has a different monitoring and update control capabilities, you review the documentation for each area to familiarize yourself with the service.

Messages

To stay informed of upcoming changes, including new and changed features, planned maintenance, or other important announcements, navigate to Microsoft 365 admin center > Message center.

Accessibility

Microsoft remains committed to the security of your data and the accessibility of our services. For more information, see the Microsoft Trust Center and the Office Accessibility Center.

Need more details?

Area Description
Prepare The following articles describe the mandatory steps to prepare and enroll your tenant into Windows Autopatch:
Deploy Once you've enrolled your tenant, this section instructs you to:
Operate This section includes the following information about your day-to-day life with the service:
References This section includes the following articles:

Have feedback or would like to start a discussion?

You can provide feedback or start a discussion in our Windows Autopatch Tech Community.