Category
stayInformed
Severity
normal
Major change
False
Last modified
2025-11-12 18:01:40
Summary source
Azure OpenAI (gpt-4.1)
Action by (Graph)
—
Action by (AI)
—
Services
Windows
Tags
Admin impact
Master tags
Admin, Security, Network
Roadmap IDs
One-line summary
Windows Autopatch will be available for US government organizations in Microsoft 365 Government starting November 2025, enabling automated update management for GCC devices.
Similar updates
More like thisMC1107364 Hotpatching now enabled by default for new Windows quality update policies
When will this happen: This feat... How this will affect your organization: Organizations using Windows Autopatch will benefit from faster security compliance and reduced downtime for devices running supported Windows editions. What you need to do to prepare: Create your new Windows Autopatch quality update policies today, with hotpatch.
MC1126220 Get started with July 2025 improvements in Windows 11
How this will affect your organization: You can start seeing improvements across various workflows in your organization with: Refreshed media for inbox Windows apps General availability of hotpatching for Windows x64 and Arm64 devices General availability of hotpatching for Window Server 2025 through Azure Arc Windows Autopatch groups .
MC1171745 Hotpatch efficiency unlocked: Smaller update size
Discover if your questions about hotpatch already ha... See Hotpatch for client: Frequently asked questions. Learn about using Windows Autopatch to create and deploy hotpatch updates. Hotpatch updates are now generally available, offering smaller, faster security updates that install in the background without restarts, improving productivity.
MC1046878 (Updated) Hotpatch for Windows client now available
(Updated) Hotpatch for Windows client now available Hotpatch updates are now generally available for Windows 11 Enterprise 24H2 (x64), enabling rapid, restart-free security updates via Windows Autopatch and Intune; Arm64 support remains in preview. Updated April 3, 2025: The language in the first paragraph was updated to provide more clarity on.
MC1068760 Resources to get started with hotpatch updates for Windows 11, version 24H2
Prerequisites include: Windows Autopatch prerequisites Devices running Windows 11 Enterprise, version 24H2 (Build 26100.2033 or later) and with the current baseline update installed An x64 CPU including AMD64 and Intel (Note: Arm64 devices are still in public preview) Microsoft Intune to manage deployment of hotpatch updates with a.
MC1106737 Get started with June 2025 improvements in Windows 11
How this will affect your organization: You can start seeing improvements across various workflows in your organization with: Hotpatching for Windows Server 2025 Configuring role-based access control (RBAC) in Windows Autopatch New secure by default capabilities for Windows 365 Cloud PCs Preparation for expiration of Secure Boot certificates.
Details
Body (from Message Center)
The power of automated Windows update management is coming to government SKUs. This cloud-based service has now been approved to be added to the Azure FedRAMP High Provisional Authorization to Operate. If you manage Government Community Cloud (GCC) devices, this service became part of Microsoft 365 Government this month.
When will this happen:
Windows Autopatch is available to US government organizations starting November 2025.
How this will affect your organization:
This is what Windows Autopatch allows you to accomplish for your GCC devices:
- Control over which content is approved for deployment to which devices
- Automation of a safe rollout process
- Faster security with hotpatching
- Pausing or expediting monthly quality updates or drivers
- Simplified update compliance reporting
- Policy management and reporting through the Microsoft Intune admin center
What you need to do to prepare:
Review additional information for prerequisites and complete details. Here’s one way to get started:
- Go to the Microsoft Intune admin center.
- In the left pane, select Tenant administration and then navigate to Windows Autopatch > Autopatch groups.
- Create a Windows Autopatch group and assign devices, automating a few things:
- Distribute devices for gradual rollout into a set of Microsoft Entra groups.
- Configure a safe rollout schedule using update rings.
- (Optional) Configure content approval using feature and driver update policies.
- (Optional) Configure update settings for Microsoft 365 Apps and Microsoft Edge.
- Enroll devices to receive hotpatch updates, getting them secure faster.
- That’s it! Just monitor the reports to ensure that you’re hitting your update compliance targets.
Additional information:
- Read the announcement at Windows Autopatch for the US government: How to get started.
- Double-check that your devices meet the prerequisites for Windows Autopatch.
- Configure role-based access control to manage access to your organization’s resources.
- Configure your network.
Raw JSON (for debugging)
Expand/collapse the full payload below.
Show/hide raw
{
"snapshot_item": {
"action_required_by": null,
"ai_action_required_by": null,
"ai_actions": [
"Review prerequisites for Windows Autopatch",
"Create and assign Autopatch groups in Intune",
"Configure update policies and schedules",
"Enroll devices for hotpatch updates",
"Monitor update compliance reports",
"Set up role-based access control",
"Configure network for Autopatch"
],
"ai_master_tags": [
"Admin",
"Security",
"Network"
],
"ai_model": "gpt-4.1",
"ai_summary": "Windows Autopatch will be available for US government organizations in Microsoft 365 Government starting November 2025, enabling automated update management for GCC devices.",
"ai_topics": [
"Windows",
"Microsoft 365",
"Intune",
"Entra"
],
"category": "stayInformed",
"details_map": {},
"id": "MC1185309",
"importance": 0,
"is_major_change": false,
"last_modified": "2025-11-12T18:01:40Z",
"ms_products": [
"Windows"
],
"platforms": null,
"roadmap_ids": [],
"services": [
"Windows"
],
"severity": "normal",
"tags": [
"Admin impact"
],
"title": "Windows Autopatch for the US government: How to get started"
}
}