Windows Patch Management: Difference between revisions

As of Fall 2025, UMIACS uses Windows' built-in Windows Update mechanism to patch the Windows operating system as well as other Microsoft products that Microsoft uses Windows Update to push updates for in tandem with a software distribution tool called Patch My PC that operates through the Division of IT's provided Intune service to patch third party applications.

Our previous patch management solution, Ivanti Endpoint Manager, may still have agent software installed on UMIACS-supported Windows desktops, however it operates only in "read-only" mode and does not perform actual patching anymore. It will be removed in the future.

Windows Update

• Desktops will run updates available through Windows Update daily between 3am and 4am US Eastern.
• Laptops will run updates available through Windows Update at any time they are on and connected to the internet.

The only updates available through Windows Update that should require computer restarts are the Windows operating system monthly rollups, released on Microsoft's Patch Tuesday. After a month's monthly rollup is installed on your computer, you will receive a notification stating that your machine needs to be restarted in the next 8 days. You can choose either to restart immediately or to schedule the restart. If you do not restart by the deadline, your computer will automatically restart no more than a day after the deadline is exceeded.

Patch My PC

Patches are deployed as they come out for the Patch My PC catalog. They should install automatically and require little to no input.