|
There are isolated problems with current patches, but they are well-known and documented on this site. |
I’ve disabled all Group Policies in my Windows 10 Pro PC (Installed 12/28/2021 – OS Build 19044.1503 – Windows Feature Experience Pack 120.2212.4170.0) except for these two
– Target release version for feature updates (set at 21H2)
– Target product version for feature updates (set at 21H2)
Does anyone have a current list of active group policies that you recommend, plus a brief reason why you recommend that specific policy? Thanks
Three things to start:
Firstly, the computers I manage are still on 21H1, so everything below is based on that, but there aren’t any big changes between 21H1 and 21H2 Group Policies, as far as I know. But apologies in advance if anything is inaccurate or missing.
Secondly, disabling a Group Policy will often actively set something to not happen (or to happen, in some cases), so you don’t want to do this for literally every policy, as you say you have done. For the vast majority of policies you will want to leave them as Not configured.
Thirdly, the “Target product version” that you have set, assuming you are referring to the option under ‘Select the target Feature Update version’, should be set to Windows 10, not 21H2. Windows 10 is the Windows product version, 21H2 is the target version for feature updates.
Here’s a list of Group Policies I recommend for Windows Update:
Computer Configuration > Administrative Templates > Windows Components > Windows Update > Configure Automatic Updates
(Enabled and set to: 2 – Notify for download and auto install)
(This prevents the automatic installation of updates)
Computer Configuration > Administrative Templates > Windows Components > Windows Update > Do not include drivers with Windows Updates
(Enabled)
(If you prefer to manually update drivers)
Computer Configuration > Administrative Templates > Windows Components > Windows Update -> Windows Update for Business > Manage preview builds
(Enabled and set to Disable preview builds)
(Self-explanatory)
Computer Configuration > Administrative Templates > Windows Components > Windows Update -> Windows Update for Business > Select the target Feature Update version
(Enabled and set to Windows 10 and 21H2)
(This keeps you on Windows 10 and 21H2 respectively)
Thank you for the tips and clarification (windows 10 and 21H2) I made all recommended changes (enabled) and ensured all other are settings are set as “Not configured” I misspoke earlier in that none are disabled.
There is always our KB article.
https://www.askwoody.com/forums/topic/2000016-guide-for-windows-update-settings-for-windows-10/
cheers, Paul
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
