Microsoft is working to fix a known issue that prevents Azure Virtual Desktops devices from downloading, downloading, and installing recent security updates through Windows Server Update Services (WSUS).
“We are investigating an issue where devices running Windows 10 Enterprise multisession, version 1909, might not be able to download updates after May 2021,” Microsoft said. He says in the Windows Health Panel.
“This is seen in the Settings app in Windows Update settings, which will show the message ‘You are up to date’ even if no updates have been installed after May 2021.”
The known issue affects both the client platforms (Windows 10 Enterprise Multisession, version 1909) and the server (Windows Server Multisession, version 1909).
Microsoft is currently working to resolve this bug and will update to address the bug in a future version of Windows.
Alternative solutions available
Until a workaround is available for this issue, Microsoft provides two workarounds that would allow customers to apply monthly security updates to Azure virtual desktop systems from WSUS.
The first requires the deployment of updated images, including all Azure Marketplace security updates for affected devices.
The second approach, required if image redistribution is not an option, requires you to download security updates from the Microsoft Update Catalog and install them manually on these devices.
“You can download these updates from the Microsoft Update catalog as Microsoft Update (.msu) files and deploy them with your management solution,” Microsoft explains.
“These downloads are Microsoft Update files (.msu). You can now add these files to your endpoint management system and deploy them to devices running Windows 10 Enterprise or Education, version 1909.”
Detailed instructions on how to redeploy images and install updates manually are available at the KB5004926 supporting document.