Microsoft allows administrators to apply updates through its Out-Of-The-Box Experience for first-time installation.
Starting next month, administrators will have the ability to apply updates through the Windows Out of Box Experience (OOBE). This way, devices will be up-to-date when users log in for the first time.
Long-awaited Feature
The “long-awaited” change will be introduced next month in Windows 11 version 22H2 and later, Microsoft writes in a blog post. “You can maintain seamless control over quality updates while ensuring the device meets your company’s security and compliance requirements.”
Automatically installing updates during OOBE before the first login was already available, but it required PowerShell knowledge, according to The Register. After the new Windows update in September 2025, the setting will be automatically enabled on the Autopilot Enrollment Status Page (ESP). This displays the device configuration and tracks the installation of applications, security policies, certificates, and network connections.
For new ESP profiles, the option to install quality updates is enabled by default. For existing profiles, administrators must activate this manually. The new setting will already appear in Microsoft Intune from the end of August. Let’s hope that these updates work better than those from August, and our HDDs and SSDs remain intact.