Backup & Storage|Security|Windows 10

Use the Update Compliance in Operations Management Suite to Monitor Windows Updates

In today’s Ask the Admin, I will show you how to configure Operations Management Suite (OMS) Update Compliance.



Sponsored Content

Read the Best Personal and Business Tech without Ads

Staying updated on what is happening in the technology sector is important to your career and your personal life but ads can make reading news, distracting. With Thurrott Premium, you can enjoy the best coverage in tech without the annoying ads.

Microsoft’s OMS, previously known as Azure Operational Insights, is a cloud-based platform for collecting large amounts of telemetry data from devices. It helps to provide greater insight into your environment and operations. While not a replacement for System Center Operations Manager (SCOM), it is useful where organizations would struggle to provision the necessary on-site infrastructure to store and collect the required amounts of data.

OMS is made up of different solutions, which can be added to workspaces to collect data and provide information on the workspace dashboard. The Update Compliance solution provides information on the Windows patches installed on each connected device. OMS Update Compliance is a useful companion to Windows Update for Business (WUfB) in Windows 10 because WUfB does not provide the comprehensive reporting of Windows Server Update Services (WSUS) and System Center Configuration Manager (SCCM).

For more information on OMS, see What Is Azure Operational Insights? and On Board Servers to Azure Operational Insights on the Petri IT Knowledgebase.

The instructions that follow will show you how to set up an OMS workspace and how to set up the OMS Update Compliance solution.

Add Update Compliance to Operations Management Suite Workspace

The first step is to set up the Update Compliance solution in OMS.

  • Go to the OMS website and click Sign in. Log in using your Microsoft Account.
  • If you are asked to create a new OMS Workspace, click OK in the OMS window.
Configure a new OMS workspace (Image Credit: Russell Smith)
Configure a New Operations Management Suite Workspace (Image Credit: Russell Smith)
  • Fill in the Workspace Name, Workspace Region, Name, Email, Phone Number, Company, and Country. Agree to the terms and conditions and click CREATE.
  • If you already have an Azure subscription, it can be linked to your workspace. Click LINK to link the workspace to an Azure subscription or CREATE NEW to continue without linking to Azure.
  • Click Solutions Gallery.
  • Select the Update Compliance tile in the gallery and select Add on the details

The Update Compliance solution will now be visible in your workspace.

Enroll Devices

To enroll devices to Update Compliance, you will need a subscription ID. This is a unique number that the machines you want to enroll will use to identify your OMS tenant.

  • Click Settings on the workspace dashboard to configure the Update Compliance solution.
  • On the Settings page, click Connected Sources and Windows Telemetry.
  • Copy the Commercial ID Key to the clipboard.

Windows uses the Commercial ID Key to identify the OMS workspace. There are two ways to configure Windows 10 with the Commercial ID Key:

  1. Use Group Policy to input the Commercial ID Key.
  2. Use Windows upgrade Deployment Script to input the Commercial ID Key.

In this example, I will use local policy. In a domain environment, the Commercial ID Key can be configured using Group Policy. For more information on working with Group Policy in an Active Directory environment, see Create and Link a Group Policy Object in Active Directory on Petri.

  • Type mmc in the search box on the taskbar, right click mmc in the results, and select Run as administrator from the menu.
  • In the console window, press CTRL+M to add a snap-in.
  • Under Available snap-ins on the left of the Add or Remove Snap-Ins dialogue, double-click Group Policy Object Editor.
  • Click Finish in the Select Group Policy Object dialogue to select the local computer.
  • Click OK in the Add or Remove Snap-Ins.
  • Under Local Computer Policy in the console window, navigate to Computer Configuration > Administrative Templates > Windows Components > Data Collection and Preview Builds.
  • Click Configure the Commercial ID setting in the Group Policy Editor.
Configure Windows 10 to work with OMS Update Compliance (Image Credit: Russell Smith)
Configure Windows 10 to Work with Operations Management Suite Update Compliance (Image Credit: Russell Smith)
  • Paste the Commercial ID Key that you copied earlier into the Commercial Id field in the Configure the Commercial ID.
  • Click OK.
  • Close the management console.

It takes approximately 48 hours for information to appear in the OMS portal.

The Update Compliance solution in Microsoft OMS (Image Credit: Russell Smith)
The Update Compliance Solution in Microsoft Operations Management Suite (Image Credit: Russell Smith)

In this article, I showed you how to configure the Update Compliance solution in OMS and how to enroll a Windows 10 device to the OMS tenant.


Don't have a login but want to join the conversation? Sign up for a Petri Account

Comments (0)

Leave a Reply

IT consultant, Contributing Editor @PetriFeed, and trainer @Pluralsight. All about Microsoft, Office 365, Azure, and Windows Server.

Download this eBook!

External Sharing and Guest User Access in Microsoft 365 and Teams

his eBook will dive into policy considerations you need to make when creating and managing guest user access to your Teams network, as well as the different layers of guest access and the common challenges that accompany a more complicated Microsoft 365 infrastructure. The eBook will also outline some of the major decision points across four general-purpose guest access policy scenarios for how an organization can set this up with standard licensing.

Download Now

Sponsored By