Category
stayInformed
Severity
normal
Major change
False
Last modified
2025-11-12 18:01:40
Summary source
Azure OpenAI (gpt-4.1)
Action by (Graph)
—
Action by (AI)
—
Services
Windows
Tags
Admin impact
Master tags
Admin, Security, Network
Roadmap IDs
One-line summary
Windows Autopatch will be available for US government organizations in Microsoft 365 Government starting November 2025, enabling automated update management for GCC devices.
Similar updates
More like thisMC1107364 Hotpatching now enabled by default for new Windows quality update policies
When will this happen: This feat... How this will affect your organization: Organizations using Windows Autopatch will benefit from faster security compliance and reduced downtime for devices running supported Windows editions. What you need to do to prepare: Create your new Windows Autopatch quality update policies today, with hotpatch.
MC1126220 Get started with July 2025 improvements in Windows 11
How this will affect your organization: You can start seeing improvements across various workflows in your organization with: Refreshed media for inbox Windows apps General availability of hotpatching for Windows x64 and Arm64 devices General availability of hotpatching for Window Server 2025 through Azure Arc Windows Autopatch groups .
MC1171745 Hotpatch efficiency unlocked: Smaller update size
Discover if your questions about hotpatch already ha... See Hotpatch for client: Frequently asked questions. Learn about using Windows Autopatch to create and deploy hotpatch updates. Hotpatch updates are now generally available, offering smaller, faster security updates that install in the background without restarts, improving productivity.
MC1106737 Get started with June 2025 improvements in Windows 11
How this will affect your organization: You can start seeing improvements across various workflows in your organization with: Hotpatching for Windows Server 2025 Configuring role-based access control (RBAC) in Windows Autopatch New secure by default capabilities for Windows 365 Cloud PCs Preparation for expiration of Secure Boot certificates.
MC1126054 Upgrade to Windows 11 with Windows Autopatch groups
Upgrade to Windows 11 with Windows Autopatch groups Use Windows Autopatch groups and a new upgrade playbook to plan and manage phased Windows 11 rollouts before Windows 10 support ends on October 14, 2025. Use Windows Autopatch groups to gradually roll out Windows 11 before Windows 10 reaches end of servicing on October 14, 2025. A newly.
MC1192178 New Windows Autopatch reports on CVEs
New Windows Autopatch reports on CVEs A new Windows Autopatch CVEs report in Intune helps track remediated vulnerabilities, device risk status, and links to remediation steps for improved security management. A new Windows Autopatch report empowers your organization to prioritize update deployment, demonstrate compliance, and maintain a.
Details
Body (from Message Center)
The power of automated Windows update management is coming to government SKUs. This cloud-based service has now been approved to be added to the Azure FedRAMP High Provisional Authorization to Operate. If you manage Government Community Cloud (GCC) devices, this service became part of Microsoft 365 Government this month.
When will this happen:
Windows Autopatch is available to US government organizations starting November 2025.
How this will affect your organization:
This is what Windows Autopatch allows you to accomplish for your GCC devices:
- Control over which content is approved for deployment to which devices
- Automation of a safe rollout process
- Faster security with hotpatching
- Pausing or expediting monthly quality updates or drivers
- Simplified update compliance reporting
- Policy management and reporting through the Microsoft Intune admin center
What you need to do to prepare:
Review additional information for prerequisites and complete details. Here’s one way to get started:
- Go to the Microsoft Intune admin center.
- In the left pane, select Tenant administration and then navigate to Windows Autopatch > Autopatch groups.
- Create a Windows Autopatch group and assign devices, automating a few things:
- Distribute devices for gradual rollout into a set of Microsoft Entra groups.
- Configure a safe rollout schedule using update rings.
- (Optional) Configure content approval using feature and driver update policies.
- (Optional) Configure update settings for Microsoft 365 Apps and Microsoft Edge.
- Enroll devices to receive hotpatch updates, getting them secure faster.
- That’s it! Just monitor the reports to ensure that you’re hitting your update compliance targets.
Additional information:
- Read the announcement at Windows Autopatch for the US government: How to get started.
- Double-check that your devices meet the prerequisites for Windows Autopatch.
- Configure role-based access control to manage access to your organization’s resources.
- Configure your network.
Raw JSON (for debugging)
Expand/collapse the full payload below.
Show/hide raw
{
"snapshot_item": {
"action_required_by": null,
"ai_action_required_by": null,
"ai_actions": [
"Review prerequisites for Windows Autopatch",
"Create and assign Autopatch groups in Intune",
"Configure update policies and schedules",
"Enroll devices for hotpatch updates",
"Monitor update compliance reports",
"Set up role-based access control",
"Configure network for Autopatch"
],
"ai_master_tags": [
"Admin",
"Security",
"Network"
],
"ai_model": "gpt-4.1",
"ai_summary": "Windows Autopatch will be available for US government organizations in Microsoft 365 Government starting November 2025, enabling automated update management for GCC devices.",
"ai_topics": [
"Windows",
"Microsoft 365",
"Intune",
"Entra"
],
"category": "stayInformed",
"details_map": {},
"id": "MC1185309",
"importance": 0,
"is_major_change": false,
"last_modified": "2025-11-12T18:01:40Z",
"ms_products": [
"Windows"
],
"platforms": null,
"roadmap_ids": [],
"services": [
"Windows"
],
"severity": "normal",
"tags": [
"Admin impact"
],
"title": "Windows Autopatch for the US government: How to get started"
}
}