Windows Update for Professional Deployment Service to Get Phased Deployment Feature – Redmondmag.com
Windows Update for Professional Deployment Service to get the gradual deployment feature
Microsoft continues to add features to its budding Windows Update for Business deployment service, introducing a “gradual deployments” feature this week.
The Windows Update for Business Deployment Service is a somewhat new cloud-based service, introduced in March last year, which aims to provide organizations with more nuanced control over Windows software updates. It has some upcoming features that have not reached the preview stage yet. It’s designed to work with PowerShell, Microsoft Graph APIs, and Microsoft Endpoint Manager (Intune), but those features also appear to be in the coming stage.
Microsoft predicted in March that the Windows Update for Business deployment service would be “available to all Windows Enterprise customers in the first half of 2021,” but that prediction now appears wrong.
The newly described rolling rollouts feature for the Windows Update for Business Deployment Service is used to stagger Windows 10 or Windows 11 client operating system updates across different types of devices. It’s apparently modeled after Microsoft’s own Windows Update triage process which is used to “update hundreds of millions of consumer devices”.
The gradual rollout capability is designed for use by organizations with “unique” hardware and software compatibility issues, as Microsoft describes it.
To use rolling deployments, IT pros must enable a “WUfBCloudProcessing permission policy,” which allows them to order Windows updates based on device hardware attributes, as well as apps or drivers used. Enabling this policy grants Microsoft certain information processing permissions.
“By enabling the AllowWUfBCloudProcessing policy, you allow Microsoft to collect and process information about these important device attributes and to use this information to optimize the order in which devices are included in a phased rollout,” the announcement explained. from Microsoft.
The announcement does not explain if the rolling rollout feature is available or in preview for testing. However, most features of Windows Update Deployment Service for Business have not yet reached the public preview stage and may still be in the private preview stage.
Windows Update for Business Deployment Service Timeline
It’s possible that the Windows Update for Business Deployment Service will be available in preview form sometime in the first or second half of this year, perhaps as a retail version, but it’s all a bit murky.
For example, Microsoft recently updated this November announcement to state that “the public preview of the Windows Update for Business Deployment Service will be available in Microsoft Graph and Microsoft Endpoint Manager in the first half of 2022”, but this assertion is not consistent. with other Microsoft statements.
The November update announcement also included the following timeline, which illustrated when certain Microsoft Graph features (approval and scheduling, management reporting) will turn on in the Windows Update for Business Deployment Service:
Microsoft previously said in another updated announcement that “the public preview of Microsoft Graph APIs to manage Windows updates” took place on April 28, 2021.
Microsoft is currently planning a public preview of Windows Update for the Business Deployment Service as a web app in July, with Windows Intune integration expected to arrive later this year (presumably as a public preview).
Here’s how Microsoft’s updated November article explains upcoming Windows Update milestones for the Professional Deployment Service.
The Microsoft Graph private preview started in December 2021 with the web application enabling driver approval and scheduling. In May 2022, management reporting in Update Compliance will join private preview, and we plan to launch all features in public preview in July 2022, with a fully open-source web application. It will be publicly available in Intune later this year.
To use the Windows Update Deployment Service for Business, when it is released, organizations will need a subscription license for Windows 10 E3 (minimum) or Windows Virtual Desktop Access E3 (minimum), or a Microsoft 365 Business Premium subscription.
Windows devices will need to be Azure Active Directory service joined or they can be “hybrid” joined (Azure AD plus on-premises Active Directory).
IT professionals will need to have certain role permissions to use the Windows Update for Business deployment service. They will need to be a global admin or an Intune admin in Azure AD. They can also use a Policy and Profile Manager role in Microsoft Intune for the service.
Kurt Mackie is senior news producer for 1105 Media’s Converge360 group.