Microsoft has removed manual deferrals from Windows Update for Business

Microsoft has changed the Windows Update service for Business with Windows 10 version 2004. The company has removed the ability to defer manually Windows 10 feature updates using the Windows Update page in Settings.

The change is exposed with the latest documentation update, first spotted by ZDNet. According to the company, they are trying to make the update process less confusing.

Update less: Last year, we changed update installation policies for Windows 10 to only target devices running a feature update version that is nearing end of service. As a result, many devices are only updating once a year. To enable all devices to make the most of this policy change, and to prevent confusion, we have removed deferrals from the Windows Update settings Advanced Options page starting on Windows 10, version 2004.

So, with this change, it is no longer possible to manually defer updates for 365 days using the Windows Update settings Advanced Options page in Pro, Education and Enterprise edition of Windows 10.

Microsoft recommends using a Group Policy instead, as follows.

If you wish to continue leveraging deferrals, you can use local Group Policy (Computer Configuration > Administrative Templates > Windows Components > Windows Update > Windows Update for Business > Select when Preview builds and Feature Updates are received or Select when Quality Updates are received).

If the policy is not set, devices will be upgraded to the to 20H2 once users install May 2020 Update. Earlier, it was possible to postpone feature updates up to 365 days.

3 thoughts on “Microsoft has removed manual deferrals from Windows Update for Business

  1. Dennis Nilsson

    “Enabling passwordless sign in will switch all Microsoft accounts on your Windows 10 device to modern authentication with Windows Hello Face, Fingerprint, or PIN.”

    from https://docs.microsoft.com/en-us/windows/whats-new/whats-new-windows-10-version-2004

    That seems very unsecure. Are they megalomaniacs at Microsoft?

    Reply
    1. Robert

      Why do you think biometrics are insecure? Face recognition of Windows is pretty robust – it cannot be fooled by a simple photo. Fingerprint is secure. Registering any biometric method stores cryptographic key pair in TPM hardware chip or software TPM.

      PIN is also secure since PIN is stored in TPM hardware; password stored in Windows security databases.

      Reply
  2. Phil

    That’s why I stay away from Windows 10

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *