Over the years, Microsoft has made a lot of changes in how Windows updates work as a result of the feedback from users. However, it has not made changes in the process that affects nearly all of us: the installation of twice-yearly feature releases. It still rolls out a release every six months — whether we want them or not. These feature releases are disruptive; I personally have to fix PDF printers for QuickBooks that get removed by the feature update and keep an eye on my workstations for other side effects. This twice-a-year process is tiring and because many of the security features and enhancements are only available with certain licensing models of Windows 10, such as Enterprise or Microsoft 365 E5, many users (including myself) do not see these new security features rolled out with each release.
All too often, I see people report that “a patch caused my printers to fail.” After asking for more information, I realize that the “patch” was actually one of the semi-annual feature releases. This blurring of the impact of monthly security updates and semi-annual feature releases prompts many to request information on how to stop the updating process. It’s not good when impactful feature releases cause users to fear the updating process.
The other day, I spotted a post in the Answers forum, that if true, is concerning: “I contacted the Dell customer support and thanks to them that I could restore my system,” the user wrote. “They advised me not to update my laptop till 2021 Feb., as there are serious bug[s] with the latest updates.”
How many times have I seen my own Surface device get a feature release offered up after my Lenovo laptop because of a blocking condition due to a driver. On a regular basis, I am asked whether it’s time to upgrade to Windows 10 2004 or even 20H2 and I look at the pending issues with concern (on top of anecdotal stories from IT admins and consultants who recommend staying on 1909). Microsoft just fixed the Thunderbolt SSD issue that was causing blue screens of death in the Nov. 30 preview update of KB4586853. (Many didn’t expect this would be fixed until next year.) And yet, there are still concerning issues with the 2004 and 20H2 releases.
Often, I see antivirus and security solutions that have not yet certified 20H2 for their platforms. For example, Sophos expects to soon certify its SafeGuard Enterprise as ready to be installed during an in-place upgrade even as Bitlocker is enabled on the device. McAfee also provides a rundown of known issues when upgrading between versions. Generally speaking, my rule of thumb for using antivirus software is to stay with Microsoft Defender if you receive or install feature updates soon after they’re released. If you use any other third-party antivirus, I recommend that you stay on older feature releases for at least several months after the latest version’s release. (FYI: A block is still in place for administrators who normally rename the admin account in their deployment process.)
Microsoft has provided a way to bypass any block it has in place by using a new group-policy setting. In Group Policy, go to Computer configuration>Administrative Templates>Windows Components, then Windows Update, then Windows Update for Business. Find the “Disable safeguards for Feature Updates” setting. This policy is available to Windows Update for Business devices running Windows 10, version 1809 or later that have installed the October 2020 security update.
I would only use this for testing purposes. For users stuck on Win10 1909 due to the issue with Conexant audio drivers, the only workaround now is to remove the Conexant drivers and proceed with the feature release process. (You will end up with generic Microsoft audio drivers.) If you don’t need the advanced features from your audio settings, this may be an acceptable option.
As of a few days ago, 20H2 use was still in single digits at less than 9%, per Adduplex. The majority of Windows 10 users are split between 1909 (36.4%) and 2004 (37.6%). Clearly, most Microsoft users do not rush to embrace the latest feature release.
It appears that Microsoft is responding. It recently announced that Insider builds will use a new process to release feature improvements. There is now a “Windows Feature Experience Pack” process that allows Microsoft to improve certain features and experiences independently of the operating system. “By testing this process first with Windows Insiders, we hope to expand the scope and the frequency of releases in the future,” the company said. “Eventually, Windows Feature Experience Pack updates will get folded into the already existing servicing process for Windows 10 and delivered to customers that way through Windows Update.”
I’ve done several surveys of what IT admins think about feature releases and most of them wish Microsoft would go to a one-per- year release cadence. It will be interesting to see whether the Feature Experience Pack process will be a way for Microsoft to do just that.
Bottom line: I’m glad Microsoft no longer force feeds Windows 10 feature releases like it used to. But I still feel this process of pushing mini service packs is disruptive, and causes too many issues. Here’s hoping that Microsoft realizes this and makes this process easier for everyone.
Copyright © 2020 IDG Communications, Inc.