We prefer to manage all our windows updates using BigFix on a schedule that we determine. We do not want any updating to occur automagically from Microsoft at undetermined times. In the last few months we have had a few clients spontaneously update themselves. This didn’t used to happen.
We have Computer Configuration | Policies | Administrative Templates | Windows Components | Windows Update | Configure Automatic Updates set to Disabled.
Obviously Microsoft has changed something, and the old method no longer works. Can someone enlighten us as to a currently working method to disable Windows Update on 21H2 so we can manage updates through BigFix?
Windows Update does seem to have become more aggressive, although MS will say that Windows 10 have done this since 1607.
The policy settings below do seem to help to tame WU
Policy Path: Computer Configuration\Administrative Templates\Windows Component\Window Update
Policy Name: Specify intranet Microsoft update service location
Setting: Enabled (and just configure an incorrect URL, such as “…” so updates connot be found)
Policy Name: Remove access to use all Windows Update Features.
Setting: Enabled