On April 1, Microsoft published a TechCommunity blog post explaining how Windows Update management in Intune differs from Configuration Manager (still widely known as SCCM). A Techzine author read the post as an announcement of upcoming changes and reported that "patch behavior is set to change significantly for Microsoft Intune." That framing is a human hallucination, as Microsoft's post does not announce any changes.

Source

Microsoft released the March 2026 updates for Intune, its cloud-based service for managing devices and apps across an organization. The most significant change is that hotpatch security updates—patches that apply without requiring a device restart—will become the default for eligible Windows 11 devices starting May 2026. On the Apple side, two notable additions arrive: a Recovery Lock for macOS and expanded support for Apple's modern device management framework. Improved push notifications and a managed installer change also streamline Windows device deployment.

Source

Dès le mois de mai 2026, Microsoft va passer à la vitesse supérieure en activant par défaut la fonctionnalité de Hotpatch sur les machines Windows 11 éligibles.

Le post Le Hotpatching par défaut arrive sur Windows 11 en entreprise : êtes-vous concerné ? a été publié sur IT-Connect.

Windows Autopatch update readiness reached general availability, adding four capabilities to the Windows Autopatch blade in the Microsoft Intune admin center. The new features—management status report, quality update journey, alerts and remediations, and Update Readiness Checker—give IT teams proactive visibility into device readiness, update blockers, and remediation guidance across Intune-managed Windows fleets. All capabilities are included in the existing Windows Autopatch license at no additional cost. Windows Autopatch is available for customers with Windows Enterprise, Frontline, US Government, Education, and Business Premium SKUs.

Source

Microsoft Cloud PKI for Intune automates certificate management for enrolled devices, but you must manually handle the expiration of the certification authority (CA). When your Cloud PKI issuing CA approaches its expiration date, you need to create a new CA and update your SCEP certificate profiles to maintain uninterrupted service. This guide explains the expiration process, potential impacts, and the steps required to transition to a new issuing CA.

Source

Microsoft released service update 2601 for Intune. The update introduces Endpoint Privilege Management support for Azure Virtual Desktop, brings admin tasks to general availability, and adds Lenovo Device Orchestration integration. Key configuration updates include new Windows settings catalog policies for Microsoft Edge version 143 and Google Chrome version 141, expanded Android Enterprise management mode filtering, and Zimperium Mobile Threat Defense certificate inventory integration for iOS devices.

Source

Microsoft Intune's January 2026 updates deliver enhancements to endpoint management, including PowerShell script installers for Win32 apps, improved Endpoint Privilege Management, unified admin task workflows, enhanced Apple device enrollment with ACME protocol support, and critical updates to the mobile application management service. These updates streamline application deployment, strengthen security controls, and improve administrative efficiency across Windows, macOS, iOS, and Android platforms.

Source

The new admin tasks feature in Microsoft Intune aggregates high-impact IT actions, approvals, and remediation workflows into a single, prioritized queue in the Microsoft Intune admin center. This centralized feature helps you act quickly on critical decisions without navigating through multiple console areas, reducing response times while maintaining security oversight across endpoint management operations.

Source