Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

Update Management

Please take a few minutes to submit your idea or vote up an existing idea. All of the feedback you share in these forums will be monitored and reviewed by the Update Management engineering team.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. 3rd Party Patching

    3rd Party Patching (Adobe, Java, etc)

    97 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    Update Management is a wrapper which uses your machine’s OS update service or package manager – to fetch & install updates.

    On Windows Server OS – the Microsoft Update Service can be configured fetch & updates for MS products. And hence UM, then can allow installing MS updates as well. More details here: https://docs.microsoft.com/azure/automation/update-management/configure-wuagent#enable-updates-for-other-microsoft-products

    Microsoft Update Service on Windows Server OS doesn’t update 3rd party software say Adobe or Java. Hence update management solution can’t also in-turn do the same. Unless tools like Wsus Package Publisher ( https://github.com/DCourtel/Wsus_Package_Publisher ) is used which can publish third-party applications into your WSUS.

  2. Support for "Optional" Update Deployment

    Azure Update Management does not currently consider updates that are flagged as "Optional" by Microsoft. When pointing clients to Windows Update or Microsoft Update, SQL Server Service Packs come in as "Optional". As such, when using Azure Update Management + Microsoft Update (NOT WSUS) the SQL Server Service Packs are not deployed. They need to be installed via another means (SCCM, manually etc.)

    Please add support for Optional Updates in Azure Update Management so we can deploy SQL SP's this way.

    This only applies to full SQL SP's and not SP Updates which are not flagged as optional in Microsoft…

    22 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Deployments  ·  Flag idea as inappropriate…  ·  Admin →

    Update Management solution is a wrapper for the OS & its update service. You can configure your machines to allow Windows Update Service to also fetch updates from Microsoft. Doing so, will also make the optional MS updates to be listed on UM – just like on the said machine. For more details, see: https://docs.microsoft.com/azure/automation/update-management/configure-wuagent#enable-updates-for-other-microsoft-products

  3. Compliance report in Update Management

    There is no option to Export the data in Automation account Update Management page where we see the total count of compliant and No machines, There should be option to export detailed report which has individual servers Compliance Status as the patch deployment output is nothing to do with Compliance report.

    15 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Assessments  ·  Flag idea as inappropriate…  ·  Admin →
  4. Update Pipeline

    It would be really helpful if you could describe a pipleine in Update Management, and get the updates to flow through that pipeline.

    e.g. You have a Dev, Test and Production Environment.
    You want to keep machines up to date, but do not want to affect Production users with faulty pathes.

    If you could describe an update pipleine, saying, deploy any updates to Dev, then to test then to prod, this would ensure updates can be developed and tested against before they reach production.

    When patch tuesday arrives, these patches would be available for your 1st environment in the pipleine,…

    14 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    Update Management solution of Azure Automation is a free tool to allow basic patch management by triggering the machine’s OS to install updates as per provided configuration at stated time.

    Hence there are two ways to achieve your scenario “exactly same updates” in test & then prod, by either manipulating the OS behavior or tweaking the AUM config:

    1. - Host the updates locally using Microsoft WSUS [https://docs.microsoft.com/azure/automation/automation-configure-windows-update#make-wsus-configuration-settings] or Reposync utility from RedHat [https://access.redhat.com/solutions/23016]or Ubuntu Landscape [https://docs.ubuntu.com/landscape/], etc. And the configure the update service or package manager of all your machines to use the local update source. In this way the updates installed when using Update Management will only be what is available in your local patch server which is running (say) WSUS or RH Reposync. And if the patch server remain unchanged in 2-3 weeks when you start update schedule for Prod, they will also…
  5. It is nice to have option to export list of servers which are scheduled for update management

    After scheduling update management, there is no way we can export list of servers that are part of the update management. While we create groups ahead of scheduling patching but at the time of creating the schedule, there is no way to compare that with the groups created.

    12 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Scheduling  ·  Flag idea as inappropriate…  ·  Admin →
  6. disable schedule updates

    There needs to be an option to temporarily disable a scheduled deployment and/or the ability to disable a computer from participating in the next scheduled update.

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Scheduling  ·  Flag idea as inappropriate…  ·  Admin →
  7. Wrong values in System Update Assessment solution dashboard

    System Update Assessment solution dashboard is displaying wrong values.
    If i try to make a query directly in search it returns the right values

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    The circled field is number of computers missing any critical updates, e.g. there are six computers which haven’t been patched.
    The underlined fields are the numbers of patches missing on those computers. So computer one is missing a total of 47 critical patches, computer two is missing a total of 9 critical patches, etc.

    Leaving this as “needs feedback” until we can confirm it’s by design.

  8. Allow enabling of Update Management (Preview) when OMS is already enabled

    Error message when attempting to enable Update Management (Preview) when OMS is already onfigured:
    {"code":"DeploymentFailed","message":"At least one resource deployment operation failed. Please list deployment operations for details. Please see https://aka.ms/arm-debug for usage details.","details":[{"code":"Conflict","message":"{\r\n "status": "Failed",\r\n "error": {\r\n "code": "ResourceDeploymentFailure",\r\n "message": "The resource operation completed with terminal provisioning state 'Failed'.",\r\n "details": [\r\n {\r\n "code": "DeploymentFailed",\r\n "message": "At least one resource deployment operation failed. Please list deployment operations for details. Please see https://aka.ms/arm-debug for usage details.",\r\n "details": [\r\n {\r\n "code": "BadRequest",\r\n "message": "{\r\n \"error\": {\r\n \"code\": \"BadRequest\",\r\n \"message\": \"Multiple VMExtensions per handler not supported for OS type 'Windows'. VMExtension 'MMAExtension' with handler…

    6 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Deployments  ·  Flag idea as inappropriate…  ·  Admin →
  9. Reports on servers in Deployment Schedules

    With hundreds of servers in different Update Management Deployment Schedules (for windows updating), I find listing and exporting the membership of these groups of computers extremely necessary. I regularly have to audit which servers are in which schedules for patch management, and having to log into each schedule, then click on the "Machines to Update" field and scroll through each, to know if a machine needs to be removed or added is ridiculous .
    Everything else in Azure is a query and Boom! you have your output. But I am told that this isn't available by query or some build…

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    need-feedback  ·  1 comment  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  10. Ability to schedule the exact reboot time

    In our update installation process, we need to communicate to our clients as precisely as possible the time when the servers will be offline (rebooting).

    Right now, we start installing updates 30 minutes before the agreed upon time and delay rebooting the servers until that time. We would love to be able to do this using Update Management.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Deployments  ·  Flag idea as inappropriate…  ·  Admin →
  11. 4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Deployments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Unable to delete scheduled update deployment

    Error:

    Delete scheduled deployment failed.
    09:20
    An error occurred while deleting the scheduled deployment 'UpdateWindows'. Error details: ajaxExtended call failed.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Deployments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Identify which server update failed.

    From the Automation Account, the job did not id which servers failed.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  14. Per User pricing

    OMS is a great solution for monitoring devices, etc. It would be great if there was a pricing model based on user count. This would allow the collection of logs/update data/changes/etc from Desktops, Laptops, phones, or other devices associated with that user. Paying per node for a user with 3 devices when combined with Microsoft 365 licensing is just too pricey. Ideally, it would be great to see Microsoft 365 pricing include the Log Analytics, Update Management, and Anti-Malware solutions from OMS for all of the users devices.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  15. driver updates incorrectly reporting

    I have several windows systems and VMs that are misreporting driver updates required. I have run Windows Update, scanned for updates from driver manufactures tool kits, and I have even gone to device manager and attempted to search for and manual install latest drivers (that I already had installed.) Some of the drivers are old as the component is a few years old (like processors from 2013 with last driver update in 2015).

    Is there a way to clear the cache, or flag it as ignore so that it does not pop until a new driver actually becomes available (which…

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Update Management

Categories

Feedback and Knowledge Base