Note If the No auto-restart with logged on users for scheduled automatic updates installations policy setting is enabled, this policy has no effect. Note The Specify intranet Microsoft update service location setting must be enabled for this policy to have effect. Note This policy applies only when Automatic Updates is configured to perform scheduled installations of updates.
Note This policy applies only when the computer is configured to connect to an intranet update service by using the Specify intranet Microsoft update service location policy setting. Note This policy applies only when this computer is configured to support the specified target group names in WSUS. Important This policy applies only when Automatic Updates is configured to perform scheduled installations of updates.
Note This setting is related to option 4 in Configure Automatic Updates. Note If the operating computer's power-wake policy is explicitly disabled, this setting has no effect. Note By default, unless otherwise noted, these settings are not configured. Note To perform these procedures, you must be a member of the Domain Admins group or its equivalent.
Submit and view feedback for This product This page. View all page feedback. In this article. Windows operating systems that are still within their Microsoft Product Support Lifecycle. Specifies that updates are not immediately installed. Local administrators can change this setting by using the Local Group Policy Editor. Specifies that Automatic Updates immediately installs updates after they're downloaded and ready to install. Specifies that users will always see an Account Control window and require elevated permissions to do these tasks.
A local administrator can change this setting by using the Local Group Policy Editor. Specifies that Windows Automatic Update and Microsoft Update will include non-administrators when determining which signed-in user will receive update notifications.
Non-administrative users will be able to install all optional, recommended, and important update content for which they received a notification.
Users won't see a User Account Control window. Users don't need elevated permissions to install these updates, except in the case of updates that contain changes to the user interface, Microsoft Software License Terms, or Windows Update settings.
Specifies that only logged-on administrators receive update notifications. Specifies that updates from an intranet Microsoft update service location must be signed by Microsoft. Specifies that Automatic Updates accepts updates received through an intranet Microsoft update service location if they're signed by a certificate found in the local computer's Trusted Publishers certificate store.
Specifies that a restart timer will always begin immediately after Windows Update installs important updates, instead of first notifying users on the sign-in screen for at least two days. Specifies that the use of automatic updates is not specified at the Group Policy level. However, a computer administrator can still configure automatic updates in Control Panel. Specifies that Windows recognizes when the computer is online and uses its internet connection to search Windows Update for available updates.
Specifies that any client updates that are available from the public Windows Update service must be manually downloaded from the internet and installed. Specifies that after updates are installed, the default wait time of 15 minutes will elapse before any scheduled restart occurs.
Specifies that when the installation is finished, a scheduled restart will occur after the specified number of minutes has expired. Specifies that Install Updates and Shut Down will be the default option in the Shut Down Windows dialog if updates are available for installation at the time the user selects the Shut Down option to shut down the computer. If you enable this policy setting, the user's last shutdown choice for example, Hibernate or Restart is the default option in the Shut Down Windows dialog, regardless of whether the Install Updates and Shut Down option is available on the What do you want the computer to do?
Starting with Windows Server R2, Windows 8. Specifies that computers can retrieve information from public update services such as Windows Update and the Microsoft Store. Specifies that Windows will no longer connect to public update services such as Windows Update or the Microsoft Store. This will cause most functionality of the Microsoft Store app to stop working. Specifies that the Install Updates and Shut Down option is available in the Shut Down Windows dialog if updates are available when the user selects the Shut Down option to shut down the computer.
A local administrator can change this setting by using a local policy. Specifies that Install Updates and Shut Down won't appear as a choice in the Shut Down Windows dialog, even if updates are available for installation when the user selects the Shut Down option to shut down the computer. Specifies that the Install Updates and Shut Down option will be the default option in the Shut Down Windows dialog if updates are available for installation at the time the user selects the Shut Down option to shut down the computer.
Specifies that no target group information is sent to WSUS. Specifies that the specified target group information is sent to WSUS, which uses it to determine which updates should be deployed to this computer. If WSUS supports multiple target groups, you can use this policy to specify multiple group names, separated by semicolons, if you've added the target group names in the computer group list in WSUS.
Otherwise, a single group must be specified. Windows Update does not wake the computer from hibernation to install updates. Windows Update wakes the computer from hibernation to install updates under the previously listed conditions. Specifies that Automatic Updates will notify the user that the computer will automatically restart in five minutes to complete the installation. Some updates require the computer to be restarted before the updates will take effect.
If the status is set to Enabled , Automatic Updates won't restart a computer automatically during a scheduled installation if a user is signed in to the computer. Instead, Automatic Updates will notify the user to restart the computer. A scheduled restart occurs 10 minutes after the prompt-for-restart message is dismissed. Specifies that after a prompt for restart is postponed, a scheduled restart will occur after the specified number of minutes elapses.
Specifies that a missed scheduled installation will occur one minute after the computer is next started. Specifies that a scheduled installation that did not happen earlier will occur the specified number of minutes after the computer is next started.
Specifies that the client connects to the specified WSUS server, instead of Windows Update, to search for and download updates. Specifies that Automatic Updates will continue to deliver important updates if it's already configured to do so.
Users on computers that are running Windows 7 are not offered messages for optional applications. Users on computers that are running Windows Vista are not offered messages for optional applications or updates. A local administrator can change this setting by using Control Panel or a local policy. If you enable this policy setting, a notification message will appear on the user's computer when featured software is available.
The user can select the notification to open Windows Update and get more information about the software or install it. The user can also select Close this message or Show me later to defer the notification as appropriate. Specifies that users running Windows 7 won't be offered detailed notification messages for optional applications. Automatic Maintenance will delay starting from its activation boundary by up to the specified amount of time.
If you enable this policy setting, Automatic Maintenance will attempt to set an operating system wake-up policy and make a wake-up request for the daily scheduled time, if required. Specifies that the Install Updates and Shut Down option will appear in the Shut Down Windows dialog if updates are available when the user selects the Shut Down option to shut down the computer. You must have Administrators rights on the local device, or you must have the appropriate permissions to update a Group Policy Object GPO on the domain controller to perform these procedures.
To open Local Security Policy, on the Start screen, type secpol. When you find the policy setting in the details pane, double-click the security policy that you want to modify. If this security policy has not yet been defined, select the Define these policy settings check box. If you want to configure security settings for many devices on your network, you can use the Group Policy Management Console. The following procedure describes how to configure a security policy setting for only a domain controller from the domain controller.
Group Policy has two different two policy types. Namely, Computer Policies and User Policies. Use the below command to update both policy types at the same time. If you want to update the Computer Policies only, you can use the below command. Keep in mind that the below command will not update the User Policies. If you see any error messages or problems, use the below command to force the computer policy updates.
You can configure Windows Update client settings using local or domain Group Policy settings. This is useful for the following tasks:. The Windows Update Group Policy settings are:.
Additionally, the following two settings are available at the same location under both Computer Configuration and User Configuration:. You should create separate Group Policy objects for groups of computers that have different update installation requirements.
0コメント