This is why I use WSUS. I don't think the cloud is the way to go. You lose control over your assets when you give the physical assets to someone else. Other countries around the world are divesting from Microsoft and switching to Linux so they can maintain their own infrastructure.
Yeah we can't have any of that, we need everyone using our stupid subscription based cloud stuff to make sure everyone's using our servers as everyone's slowly realizing cloud was stupid in many use cases
Exactly, it will always be safer, faster, easier to store things on a usb stick or dvd then to go get each update from the cloud. Why waste bandwidth downloading updates on multiple machines when it can be deployed from a local source?
The interesting thing is that WSUS hadn't had any significant development changes for the past 10 years at least. However that move makes clear their plan to push everyone to the cloud. Not happy with it, but happy with WSUS and SCCM as they are so far.
As a gamer, i switched to Linux a week ago after years of frustration that each update and each new iteration of windows adds more spyware, and makes my PC perform worse in gaming because of the increasing bloat and spyware. I've always had the same anxiety regarding Linux that everyone else who's never used it before, and yet windows 11 was where i finally had enough and really started to look into Linux. Finally made the switch a week ago now, and it's awesome, not perfect, but good enough, my games are stutter-free... I can easily live with this, until Linux improves and gains the market share to get official support (which might actually happen within the next 5 years)! :)
I use Linux, Nixos btw., in private, but at least companies are not going anywhere else soon. Companies will just tank the M$ fee for Intune and thats it. Most already have such subscriptions anyway. And all those private users don't need either. The real Switch right now is happening in the Hypervisor space regarding VMWare.
@salvationbygracethroughfaith I left our company before I could get my hands on the replacement We opted with manageengine update manager on premise. I didn't receive any complaints from the team I left there. But again really didn't have time with that solution.
They've taken away more and more granular controls when it comes to Windows Updates over time. Even the Windows Update group policies for Windows 7 had more control than what you get with the latest Win10/11 ADMX Templates. Not sure how technology is getting better but features are actually regressing. Very frustrating.
Airgapped systems these days receive so much pressure to move their systems to a cloud based system when security requires them to still be airgapped. Just moved into WSUS from a complex imaging distribution system looks like that was the wrong investment.
WSUS is free and serves a function, if you you manage a large(ish) server estate, as an update cache and can allow you to manage the role out of updates. It isn't perfect and has suffered from zero real development over the last 10 years. All other options (SCCM, Intune, Arc etc) have a cost which can be quite steep. SCCM and Intune are more targeted at client systems not servers. Arc requires Azure licencing. You can just stop using it and go direct to MS but you would need to give your servers access to the internet.
For what I’ve understood, intune it’s not ready for 1k+ devices, so for me and my team, with 20k+ devices it’s not feasible. We still use SCCM and and of course, WSUS. Hopefully the will not destroy it..
One thing I've hated so far (and full disclosure--I'm very new to Intune) is that it is seemingly impossible to block an update or uninstall an update (I'm talking specific updates that aren't just the last major Feature or Quality update). I had actually swapped over my org to Intune's update rings for several months, but then we had a need to block .NET runtime 6.0.32 from updating to 6.0.33 indefinitely and I literally had to swap us back to WSUS. I understand you can potentially uninstall KBs with powershell scripts using Intune, but can you just block those updates from happening in the first place?
Not having complete control over allowing any updates to go through defeats the whole purpose. Don't really need Intune to mass-push update uninstall scripts. It's probably more for rollout and MDM. Not a replacement for WSUS.
Intune is not a solution that can be used in controlled, high security environments. So whether Microsoft likes it or not, a replacement for wsus will be necessary eventually, or people will simply replace Microsoft in those environments - many of which are large government or manufacturing environments.
What the hell MS..... Intune is not a good replacement for WSUS in any shape or form. I have no remote users at all and have literally 0 need to use intune for BYOD devices... Also I am pretty sure intune was renamed to end point manager.
They are trying to create a market for intune by breaking things that do the job well and have been for years, so they can say this new thing (intune) does it better, but you need to pay for it. every month.. untill the end of time. and if you stop, we keep your data but not before throwing it into the A.I. training data just before throwing it away.
Microsoft and their shenanigans forced me to switch to Linux. Been learning the command line on and off for the last 8 months. During the initial learning curve when Linux would frustrate me I would curse Microsoft for what they are, but I'm glad I stuck it out to get to where I am now. It took far LESS time than I thought it would to get a stable system with desktop Linux, let alone for my computer to run like a Mac....screw Microsoft and their garbage OS. Screw Apple and their overpriced Linux ripoff OS (I know, I know, it's more or less BSD under the hood, still, getting my Linux machine to run like a Mac makes me think that and I had several Macs back in the early days of OSX/Power PC and Intel). My Steam library (all 4tb of it) runs BETTER in Linux than it had a hope of running in Windows 11.
I am desktop support and our organisation is using zscalr snd is pretty good to be honest with new hires MFA setup enrollment snd registering the device eith company portal as intune annd sccm hybrid management
... What do you mean by that? If you want to use windows apps on Linux, there's a compatibility app for Linux called "Bottles" that allows you to do that. Of course you need to know what dependencies you need in order to make it work, and there may be bugs, but, it is possible. :P
I am usually first to criticize Microsoft for decisions they make (I am not a fan of them in most cases) but I must say that the deprecation of WSUS does not seem like that big of a deal to me. Everything is moving to the cloud these days and while WSUS is not getting new features, they will still have it available for people who want it. It truly is a downside of having a proprietary OS with a bunch of proprietary features that the community cannot carry on, but everyone already knows that... did people expect MS to just keep support things like WSUS forever? I reckon even the days of the Windows Server OS are numbered.
There are already 3rd Windows update tools that are far superior to what Microsoft offers. While it is nice to use 1st party tools, I've come to discover that 3rd parties generally do a better job because they are also IT professionals trying to get work done.
That's the problem, cloud availability isn't up to scratch, the outages are way too common. Internet connectivity isn't great (or possible) in all situations and sometimes you don't want critical systems connected online.
@@Monk_Duck if you set everything up in a cloud native way and with a hybrid approach, it’s less likely to go down than on-prem environments. Take advantage of multiple AZs and regions when you can.
@646464mario if that were true Microsoft, Amazon and Google would have solid SLAs around availability, as it is you might get a bit of service credit back which is frankly worth nothing compared to the impact of the outage. Talk to their engineers, and they'll even advise you to go on premises if you need really high uptime. Cloud is for 'mostly working' for the masses, large profit, and avoid difficult use cases. Which is fine until they remove more on premises features. Just look at what happened to Delta when they went full in with cloud endpoint protection and forgot the first rule. Test before deploying patches from the Internet, and if you can't, don't use it on anything important.
The problem with 3rd party tools is that these also often are cloud based, and you're introducing a subscription based service into something you already had a server licence for. I think there is plenty of reason to imagine that many companies will be hybrid on-prem and cloud, simply because the frequent cloud price hikes are unsustainable for many businesses. The earlier promise that cloud means you can easily move workloads between competitors in the cloud so far doesn't seem to pan out, so having the ability to maintain part of your infrastructure and use tools like WSUS is really useful. This also allows you to segregate your networks with some systems having neither inbound nor outbound Internet access.
asking to subscribe before we see any content I think doesn't work. First just present the show, as it just causes us to skip your request, because everyone is asking. It has now become "the ad" we skip on all videos.
WSUS for client updates in the modern world is a joke. Intune all the way. PDQ Deploy is a good bet for servers on prem. In Azure, Azure Update Manager is my go to.
Thanks for watching. Is Microsoft Intune more complicated to deploy than WSUS? Let me know in the comments below.
Yes, in my view - Microsoft Intune is generally more complex to deploy than WSUS.
It also lacks the granular control WSUS has over updates.
@@synthwave7not sure what you are smoking, I configured it in 20 minutes. The report took longer to add.
@@xDownSetxit is granular enough for 90% of deployments though.
Stop using our tool you've already paid for, and rent this tool from us and pay us every month... Microsoft in a nutshell
It comes bundled with M365 subs that one should have anyway like Business Premium or E3.
The whole point of WSUS was that it could function "locally" so devices didn't have to reach the cloud for everything. 🤷♂️
This is why I use WSUS. I don't think the cloud is the way to go. You lose control over your assets when you give the physical assets to someone else. Other countries around the world are divesting from Microsoft and switching to Linux so they can maintain their own infrastructure.
Yeah we can't have any of that, we need everyone using our stupid subscription based cloud stuff to make sure everyone's using our servers as everyone's slowly realizing cloud was stupid in many use cases
Exactly, it will always be safer, faster, easier to store things on a usb stick or dvd then to go get each update from the cloud. Why waste bandwidth downloading updates on multiple machines when it can be deployed from a local source?
It is also a way to closely manage updates for servers on premise because Azure Update Manager is way too goddamn expensive.
The interesting thing is that WSUS hadn't had any significant development changes for the past 10 years at least. However that move makes clear their plan to push everyone to the cloud. Not happy with it, but happy with WSUS and SCCM as they are so far.
Microsoft is deprecating so much features they're pushing people to switch to Linux.
Wouldn’t a lot of clients just go in house or Amazon etc etc since for the same thing they’re literally better?
Yup. I’m getting back in to IT to do just that for people and businesses.
As a gamer, i switched to Linux a week ago after years of frustration that each update and each new iteration of windows adds more spyware, and makes my PC perform worse in gaming because of the increasing bloat and spyware.
I've always had the same anxiety regarding Linux that everyone else who's never used it before, and yet windows 11 was where i finally had enough and really started to look into Linux.
Finally made the switch a week ago now, and it's awesome, not perfect, but good enough, my games are stutter-free... I can easily live with this, until Linux improves and gains the market share to get official support (which might actually happen within the next 5 years)! :)
I use Linux, Nixos btw., in private, but at least companies are not going anywhere else soon.
Companies will just tank the M$ fee for Intune and thats it. Most already have such subscriptions anyway.
And all those private users don't need either.
The real Switch right now is happening in the Hypervisor space regarding VMWare.
WSUS? Good riddance, it's a shitty solution. Most professional organisations use configuration manager, smaller companies should migrate to InTune.
Honestly. I was managing WSUS for about a decade, it is hell to manage. it easily breaks.
@salvationbygracethroughfaith I left our company before I could get my hands on the replacement We opted with manageengine update manager on premise. I didn't receive any complaints from the team I left there. But again really didn't have time with that solution.
When the general recommendation is to wipe it and start fresh every year, you know something is wrong
When you show something like WSUS or Intune, it's in very low resolution. Why is that? The resolution is too low for me, it's not fun watching it.
Intune? Cloud based? Then how should it update when whole network is disconnected from internet?
They've taken away more and more granular controls when it comes to Windows Updates over time. Even the Windows Update group policies for Windows 7 had more control than what you get with the latest Win10/11 ADMX Templates. Not sure how technology is getting better but features are actually regressing. Very frustrating.
Airgapped systems these days receive so much pressure to move their systems to a cloud based system when security requires them to still be airgapped. Just moved into WSUS from a complex imaging distribution system looks like that was the wrong investment.
Bruh... You need a mic arm
I do have one. It’s broken. Hence my arm as the stand in.
@@ThisWeekinITso technically, you do still have a mic arm...
@@ChristopherWoods Lol, yes
He already has a mic arm. in fact he has 2 mic arms - left & right...
Linux here we come!
WSUS is free and serves a function, if you you manage a large(ish) server estate, as an update cache and can allow you to manage the role out of updates. It isn't perfect and has suffered from zero real development over the last 10 years.
All other options (SCCM, Intune, Arc etc) have a cost which can be quite steep. SCCM and Intune are more targeted at client systems not servers. Arc requires Azure licencing.
You can just stop using it and go direct to MS but you would need to give your servers access to the internet.
For what I’ve understood, intune it’s not ready for 1k+ devices, so for me and my team, with 20k+ devices it’s not feasible. We still use SCCM and and of course, WSUS. Hopefully the will not destroy it..
InTune can manage many devices, but the real catch is Purview. You have a daily limit of data you can pull.
One thing I've hated so far (and full disclosure--I'm very new to Intune) is that it is seemingly impossible to block an update or uninstall an update (I'm talking specific updates that aren't just the last major Feature or Quality update). I had actually swapped over my org to Intune's update rings for several months, but then we had a need to block .NET runtime 6.0.32 from updating to 6.0.33 indefinitely and I literally had to swap us back to WSUS.
I understand you can potentially uninstall KBs with powershell scripts using Intune, but can you just block those updates from happening in the first place?
Not having complete control over allowing any updates to go through defeats the whole purpose. Don't really need Intune to mass-push update uninstall scripts. It's probably more for rollout and MDM. Not a replacement for WSUS.
Intune is not a solution that can be used in controlled, high security environments. So whether Microsoft likes it or not, a replacement for wsus will be necessary eventually, or people will simply replace Microsoft in those environments - many of which are large government or manufacturing environments.
What the hell MS..... Intune is not a good replacement for WSUS in any shape or form. I have no remote users at all and have literally 0 need to use intune for BYOD devices... Also I am pretty sure intune was renamed to end point manager.
WUfB is actually slick idk what you are on about
They are trying to create a market for intune by breaking things that do the job well and have been for years, so they can say this new thing (intune) does it better, but you need to pay for it. every month.. untill the end of time. and if you stop, we keep your data but not before throwing it into the A.I. training data just before throwing it away.
Its the same reason they keep trying to kill off MDT so you can pay for either SCCM or intune...
How do I make the right click Explorer functionality in Windows 11 work like in previous versions of Windows? Not using any regedit
You don't.
@@InternetSlavicMan Bad user interface design
You can do it, but you need to use terminal commands to do it.
Not all platforms, the windows app isn’t available yet for Linux
Microsoft's 365 cloud is so advanced and moving so fast, we as admins cannot keep up anymore.
its also not worth to work in the technology field anymore.
It's mind bottling
@@1.618Golden you are the mind boggling indian
I am still using Office 2003. I dont see any advantage after that. And we are super efficient.
@@sun-groupecommunications1331can only second that. 2016 and 2021 here and all offline, even our mobile work force. No problem at all.
Intune, as of writing this comment, does not fully support windows servers. M$ Intune support said it's on the road map, but no official support date.
Your B-Roll is all low res.
Microsoft and their shenanigans forced me to switch to Linux. Been learning the command line on and off for the last 8 months. During the initial learning curve when Linux would frustrate me I would curse Microsoft for what they are, but I'm glad I stuck it out to get to where I am now. It took far LESS time than I thought it would to get a stable system with desktop Linux, let alone for my computer to run like a Mac....screw Microsoft and their garbage OS. Screw Apple and their overpriced Linux ripoff OS (I know, I know, it's more or less BSD under the hood, still, getting my Linux machine to run like a Mac makes me think that and I had several Macs back in the early days of OSX/Power PC and Intel). My Steam library (all 4tb of it) runs BETTER in Linux than it had a hope of running in Windows 11.
I thank god everyday I wake up and don't have to use windows server, Microsoft's products become worse by the version.
How so? 2012 R2 was amazing, 2016 was meh mostly around updates but 2019 and 2022 are bangin
Damn that was hard to watch, I guess M$ now still 20-30 years behind Linux in regard to all services they provide.
I am desktop support and our organisation is using zscalr snd is pretty good to be honest with new hires MFA setup enrollment snd registering the device eith company portal as intune annd sccm hybrid management
No windows app on linux :(
... What do you mean by that?
If you want to use windows apps on Linux, there's a compatibility app for Linux called "Bottles" that allows you to do that. Of course you need to know what dependencies you need in order to make it work, and there may be bugs, but, it is possible. :P
@@MyouKyuubi native ofcourse xd
The video hosts says 'on all operating systems' xd
I am usually first to criticize Microsoft for decisions they make (I am not a fan of them in most cases) but I must say that the deprecation of WSUS does not seem like that big of a deal to me. Everything is moving to the cloud these days and while WSUS is not getting new features, they will still have it available for people who want it.
It truly is a downside of having a proprietary OS with a bunch of proprietary features that the community cannot carry on, but everyone already knows that... did people expect MS to just keep support things like WSUS forever? I reckon even the days of the Windows Server OS are numbered.
There are already 3rd Windows update tools that are far superior to what Microsoft offers. While it is nice to use 1st party tools, I've come to discover that 3rd parties generally do a better job because they are also IT professionals trying to get work done.
That's the problem, cloud availability isn't up to scratch, the outages are way too common. Internet connectivity isn't great (or possible) in all situations and sometimes you don't want critical systems connected online.
@@Monk_Duck if you set everything up in a cloud native way and with a hybrid approach, it’s less likely to go down than on-prem environments. Take advantage of multiple AZs and regions when you can.
@646464mario if that were true Microsoft, Amazon and Google would have solid SLAs around availability, as it is you might get a bit of service credit back which is frankly worth nothing compared to the impact of the outage. Talk to their engineers, and they'll even advise you to go on premises if you need really high uptime. Cloud is for 'mostly working' for the masses, large profit, and avoid difficult use cases. Which is fine until they remove more on premises features.
Just look at what happened to Delta when they went full in with cloud endpoint protection and forgot the first rule. Test before deploying patches from the Internet, and if you can't, don't use it on anything important.
The problem with 3rd party tools is that these also often are cloud based, and you're introducing a subscription based service into something you already had a server licence for.
I think there is plenty of reason to imagine that many companies will be hybrid on-prem and cloud, simply because the frequent cloud price hikes are unsustainable for many businesses. The earlier promise that cloud means you can easily move workloads between competitors in the cloud so far doesn't seem to pan out, so having the ability to maintain part of your infrastructure and use tools like WSUS is really useful. This also allows you to segregate your networks with some systems having neither inbound nor outbound Internet access.
asking to subscribe before we see any content I think doesn't work. First just present the show, as it just causes us to skip your request, because everyone is asking. It has now become "the ad" we skip on all videos.
Wonder if intune will stop nonsense we saw recently like servers auto upgrading.
WSUS for client updates in the modern world is a joke. Intune all the way. PDQ Deploy is a good bet for servers on prem. In Azure, Azure Update Manager is my go to.
Agree
If you're on Azure I guess that's true. There are other cloud providers though. PDQ isn't bad I guess. The nice thing about WSUS was the price. :)
More Microsoft malware...
I can’t stand Microsoft.
I never liked WSUS from day one to cumbersome , Intune MDM is breath of fresh air.
The title is completely misleading.
Sus
Aren't there stands for those mics? it's a huge distractor.
you sound like a corporate shill