Update Management

Please take a few minutes to submit your idea or vote up an existing idea. All of the feedback you share in these forums will be monitored and reviewed by the Update Management engineering team.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Ability to preview updates when creating deployment schedule

    SCCM allowed you to preview updates when creating an ADR so you could tell what updates were going to be included within the deployment - When creating a Deployment Schedule in update management you can select update classifications and include/exclude specific updates. It would be nice to be able to see at the deployment schedule screen what updates will be included within your deployment schedule.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Scheduling  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  2. إعادة تحديث هاتفي بنفس مرجعية الإصدار الأصلي للهاتف المحمول حتى يتم تسهيل على المستخدم من استخدام الهاتف ويبقى دوماً معجب بمنتجات الصانع

    هاتفي يطلب مني إعادة تحديث أكثر من مرة لهذا يزعجني كثيراً الأفضل أن يبقى طريقة استخدام الهاتف المحمول بنفس الطريقة التي قدمها الوكيل عند البيع لهذا انا منزعج من التحديث الجديد الذي أصبح صعب الاستعمال

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Assessments  ·  Flag idea as inappropriate…  ·  Admin →

    شكرا على الاقتراح الصحيح. تعليقاتك مفتوحة الآن لمجتمع المستخدمين للتصويت والتعليق عليها. يتيح لنا ذلك تحديد أولويات طلبك بفعالية مقابل تراكم الميزات الحالية لدينا ويمنحنا أيضًا نظرة ثاقبة على التأثير المحتمل لتنفيذ الميزة المقترحة

  3. Include a parameter to know whether the SoftwareUpdateConfigurationRunContext is from Pre/Post script

    I would like the following improvements to the update management schedule.

    1. Ability to see the resource group names that are part of this schedule. Right now it says N groups.
    2. Include a parameter to know whether the context is for Pre/Post script invocation. This will help us write a runbook to start/stop vm's based on the invocation.
    3. Include Pre/Post Action as part of schedule configuration. These actions can be restart if stopped (pre action), Stop/Keep the VM's running after updates etc.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Scheduling  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature

  4. Create service tag for update mangement

    Seemingly the AzureMonitor service tag contains everything needed to be able to run update management without needing to enable outbound access to the entire Internet, with the exception of eus2-jobruntimedata-prod-su1.azure-automation.net. Our security team doesn't like outbound any rules - a service tag to cover updating would be nice

    5 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  5. View suppressed updates in portal log

    As an engineer
    I want to see which updates were not installed because they were ignored by an exclusion rule in the portal output
    So that I know why an update has not been applied

    When a list of exclusions is in place and an update has been released that will be excluded, the yum update process output does not display the updates that will not be installed. Instead it displays output like the following:

    Getting available updates...

    Discovering 'security' packages...
    Discovered 5 'security' package entries.

    List of packages to be updated:
    []

    I would expect that it would list…

    15 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Scheduling  ·  Flag idea as inappropriate…  ·  Admin →
  6. Menu/Option to offboard VM's

    Removing a VM from Update Mgmt requires going to the attached Log Analytics workspace and manually removing the VMUUID from the "MicrosoftDefaultComputerGroup" saved search.
    A cleaner way to achieve this would be ideal for customers with large IaaS environments.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  7. retry option for failed server

    when a deployment fails because of one or few servers failed,, please provide an option to retry them later again. We can fix the underlying issue with the servers (like connectivity, server hang, access etc) first and then patch those individual servers to make the report success.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Deployments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  8. Update Management - Inject Patch Inclusions or Exclusions automatically during pre-script

    In Azure Update Management, we are able to cancel a scheduled Update Deployment with a pre-script (in our case, I'd like to do that if the patches have not yet been verified to impact the software prodcut running on the machine). I would also love to be able to 'inject', in the pre-script, one or more KB ID's that must be in- or excluded from the Update Deployment.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  9. How do I stop "in progress" Update Deployment?

    It's in progress for about 4 days now. The maintenance window was 30 minutes. Can see this is an ongoing issue too. Will it ever be fixed?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    triaged  ·  0 comments  ·  Deployments  ·  Flag idea as inappropriate…  ·  Admin →
  10. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    thanks for bringing this to our attention. Checking internally to see if this is currently on the roadmap. In the meantime, your feedback is now open to the community to upvote which helps us prioritize this request against our existing feature backlog.

    Cheers.

  11. Why can I not run Feature Updates on Windows 10 VMs?

    The deployment schedules do not install the Feature Updates to W10, The update gets skipped, why is this? Do I have to install it manually on each and every VM?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    triaged  ·  0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  12. Compliant/non-compliant servers tile on Dashboard

    We can pin a tile that links directly to an Automation Account's Update Management pane but it provides no useful data. It would be nice to have a server compliance dashboard tile much in the same fashion as the Intune one.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  13. Provide a List of VMs which are not Online [=Offline]

    (opposite of existing Machines List)
    Where: UpdatesAutomation - Update management > Overview

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature

  14. Optimizer to automatically generate deployments

    Provide a simple means to provide:
    1. Maintenance Window
    2. Dependency rules / chains (i.e. 48 hours after system in dynamic group named test, then perform deploy to group named production)
    3. Rolling updates for clustered applications
    4. Validation post-patching (could be as simple as the update agent has reported post-reboot initially) and then halt deployment of related-nodes (if it is defined as part of a cluster)

    Then allow for update manager to create deployments automatically by feeding this information into an optimizer.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Scheduling  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  15. Show number/details of Successful updates deployed

    The current update management screen for the summary of a previous update deployment only shows Failed/Not Attempted/Not Selected against the list of updates that were installed during the window.

    For reporting purposes it would be useful to have another column 'Successful' which would show the amount of times the update was installed.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  16. Support for "Optional" Update Deployment

    Azure Update Management does not currently consider updates that are flagged as "Optional" by Microsoft. When pointing clients to Windows Update or Microsoft Update, SQL Server Service Packs come in as "Optional". As such, when using Azure Update Management + Microsoft Update (NOT WSUS) the SQL Server Service Packs are not deployed. They need to be installed via another means (SCCM, manually etc.)

    Please add support for Optional Updates in Azure Update Management so we can deploy SQL SP's this way.

    This only applies to full SQL SP's and not SP Updates which are not flagged as optional in Microsoft…

    9 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Deployments  ·  Flag idea as inappropriate…  ·  Admin →
  17. Refresh Windows update control panel status with correct date/time

    ON-Prem: i've seen that after windows has been patched and rebooted, the only way to see last update status is through "installed updates". Nothing is displayed in "Windows update" control panel console.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  18. Download patches only

    It would be very useful to have the possibility to schedule a manual update: the patches will be downloaded automatically, but installed manually from Guest OS update console. This is also to avoid possible problems related to the "pending reboot".

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Scheduling  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  19. Dynamic Update Deployments on premises

    The Dynamic Update Deployments feature which is in preview is only able to respect Azure systems. As hybrid is the new normal, this needs to be extended to a hybrid approach. It makes no sense to offer saved searches and dynamic groups which are not respecting changes in those groups. Today deployments will fail if any changes occours in the groups with the focus on on premises machines.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Deployments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  20. Make it possible to run Update Management pre and post scripts on Hybrid Workers

    The new pre and post scripts feature for Update Management is great:
    https://azure.microsoft.com/en-us/updates/update-management-dynamic-groups-prepost/

    However, having to use wrapper/parent runbooks for running runbooks on non-Azure machines makes it tedious, especially for those not familiar with using Azure PowerShell to interact with Azure Automation.
    https://docs.microsoft.com/en-us/azure/automation/pre-post-scripts#interacting-with-non-azure-machines

    It would be very convenient and more user friendly if pre and post script could be invoked directly on Hybrid Workers, just like regular runbooks can.

    12 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Deployments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Update Management

Categories

Feedback and Knowledge Base