Source: BleepingComputer Author: Sergiu Gatlan URL: https://www.bleepingcomputer.com/news/microsoft/microsoft-adds-hotpatching-support-to-windows-11-enterprise/
-
ONE SENTENCE SUMMARY: Microsoft now offers hotpatch updates for Windows 11 Enterprise 24H2, enabling background security updates without system reboots.
-
MAIN POINTS:
-
Hotpatch updates are now available for Windows 11 Enterprise 24H2 (x64) users starting today.
-
Updates are applied in-memory, allowing background installation without rebooting the system.
-
Hotpatching minimizes disruptions while maintaining protection against cyberattacks.
-
Updates follow a quarterly cycle, with eight out of twelve months requiring no reboot.
-
Devices must be managed via Microsoft Intune using a hotpatch-enabled quality update policy.
-
Eligibility requires Windows 11 Enterprise 24H2, VBS enabled, and compatible Microsoft subscriptions.
-
Hotpatch support is still in public preview for Arm64 devices.
-
Admins can disable CHPE support for Arm64 via a registry key to maintain eligibility.
-
The Intune admin center auto-detects device eligibility for hotpatching.
-
Devices on Windows 10 or versions before 23H2 will continue standard monthly updates.
-
TAKEAWAYS:
-
Hotpatching significantly reduces downtime by avoiding reboots after most security updates.
-
IT admins can streamline patch management using Microsoft Intune policies.
-
Compatible hardware and software configurations are essential for hotpatch eligibility.
-
Microsoft continues expanding hotpatch support across Windows platforms.
-
Arm64 support is coming but currently requires manual configuration for eligibility.