Use Intune to Configure Windows Update for Business

November 14, 2016

First, Windows Update for Business (WUfB) is not something that you install. It’s not an agent or server that gets installed. It’s merely settings that you configure that establishes how Windows 10 gets serviced. It’s very similar Servicing Plans in ConfigMgr, but for cloud-based management instead of on-prem management.

WUfB will tell a Windows 10 device which servicing branch it is in, and how many days into that servicing branch that it installs the latest feature update. To refresh, the two servicing branches are Current Branch (CB) and Current Branch for Business (CBB). The number of days that you specify tells the system how long after a feature update is made CB or CBB that the machine should wait before applying the feature update. For a complete understanding of servicing plans and how best to implement them in your organization, see this blog post: Windows as a Service: Keep Windows 10 Up-to-Date – (windowsmanagementexperts.com)

Intune Configuration

To configure WUfB, you must use a Windows 10 custom configuration policy in Intune. I recommend creating a policy specifically for this purpose. The settings I reference here work with Windows 10 1607. For earlier versions of Windows 10, see the end of the blog. I will make a policy that assigns a device to CBB and installs the feature update 7 days after the OS hits CBB.

The first setting you need is Update/BranchReadinessLevel, configured like this:

This setting will configure the device for CBB. If you would like your device in CB, change the value to 16.

Next, you need this setting:

The value here is simply the number of days to postpone the feature update.

Windows 10 1511

If you are on Windows 10 1511, the OMA-URI box will be slightly different. For the first setting (BranchReadinessLevel), change the OMA-URI setting to “./Vendor/MSFT/Policy/Config/Update/RequireDeferredUpgrade” For the day deferral, change it to “./Vendor/MSFT/Policy/Config/Update/DeferUpgrade”.

Disclaimer

All content provided on this blog is for information purposes only. Windows Management Experts, Inc makes no representation as to accuracy or completeness of any information on this site. Windows Management Experts, Inc will not be liable for any errors or omission in this information nor for the availability of this information. It is highly recommended that you consult one of our technical consultants, should you need any further assistance.

Matt Tinney

Professional IT executive & business leader having decades of experience with Microsoft technologies delivering modern-day cloud & security solutions.

Contact Us

Active Directory

Mastering Azure AD Connect – A Comprehensive Guide

Modern businesses are fast moving toward cloud-based infrastructure. In fact, cloud-based business is not just a trend anymore but a strategic necessity. Microsoft’s Azure Active Directory (Azure AD) has become a frontrunner in this domain. It

December 4, 2023

Office 365

Security Best Practices in SharePoint

Microsoft SharePoint is an online collaboration platform that integrates with Microsoft Office. You can use it to store, organize, share, and access information online. SharePoint enables collaboration and content management and ultimately allows your teams to

November 25, 2023

Cloud Based Management

What to Look for in Cloud Security? How Managed Service Providers Can Help You Secure Your Cloud-based Business?

The need to use cloud computing and make it all secure has never been more pronounced. Organizations are fast turning to the cloud to fulfill their computing needs and their concerns for the security of the

November 24, 2023

WME Article: Windows Server Backup vs. Third-Party Backup Solutions

Server Administration

Windows Server Backup vs. Third-Party Backup Solutions: Which One Is Right for You?

In the realm of data protection, the choice between Windows Server Backup (WSB) and third-party backup solutions is a critical decision. Backup and Recovery solutions are crucial to maintaining the integrity of your data and operations.

November 21, 2023

Active Directory

The Ultimate Guide to Microsoft Intune

The corporate world is evolving fast. And with that, mobile devices are spreading everywhere. As we venture into the year 2024, they have already claimed a substantial 55% share of the total corporate device ecosystem. You

November 7, 2023

Protecting Microsoft 365 from on-Premises Attacks

Cloud Security

How to Protect Microsoft 365 from On-Premises Attacks?

Microsoft 365 is diverse enough to enrich the capabilities of many types of private businesses. It complements users, applications, networks, devices, and whatnot. However, Microsoft 365 cybersecurity is often compromised and there are countless ways that

November 2, 2023

Use Intune to Configure Windows Update for Business

Share:

Matt Tinney

Contact Us

More Posts

Mastering Azure AD Connect – A Comprehensive Guide

Security Best Practices in SharePoint

Windows Server Backup vs. Third-Party Backup Solutions: Which One Is Right for You?

The Ultimate Guide to Microsoft Intune

How to Protect Microsoft 365 from On-Premises Attacks?

Have Questions? We Have Answers

KEEP IN TOUCH

Managed Services

Professional Services

Staffing

Industries

Resources

About

Get WME Services