Microsoft has made a significant announcement regarding the future of Windows Server Update Services (WSUS), declaring it officially deprecated. However, the tech giant reassures users that it will maintain the current functionality and continue to publish updates through this channel.
Understanding the Shift
This decision aligns with Microsoft’s earlier communications, as the company first indicated on August 13 that WSUS would be among the “features removed or no longer developed starting with Windows Server 2025.” Additionally, in June, Microsoft disclosed plans to deprecate WSUS driver synchronization.
WSUS, which was introduced in 2005 as Software Update Services (SUS), has been a vital tool for IT administrators. It facilitates the management and distribution of updates for Microsoft products across extensive corporate networks, ensuring that numerous Windows devices receive consistent and controlled updates. By acting as an intermediary, WSUS allows centralized control over updates, eliminating the need for each device to download updates individually from Microsoft’s servers.
Future Support and Recommendations
While the introduction of new features and further development for WSUS will cease, Microsoft has committed to supporting the service’s existing functionality. Updates will still be distributed, even post-deprecation. Nir Froimovici from Microsoft stated, “Specifically, this means that we are no longer investing in new capabilities, nor are we accepting new feature requests for WSUS. However, we are preserving current functionality and will continue to publish updates through the WSUS channel. We will also support any content already published through the WSUS channel.”
This change primarily affects enterprise environments that rely on WSUS for managing updates across multiple devices. However, it does not impact home users or those utilizing Microsoft Configuration Manager.
Encouraging a Transition to Cloud Solutions
In light of WSUS’ deprecation, Microsoft is encouraging businesses to explore cloud-based solutions for client and server updates. Options such as Windows Autopatch, Microsoft Intune, and Azure Update Manager are recommended as effective alternatives. Froimovici emphasized, “While the WSUS role remains available in Windows Server 2025, we recommend organizations transition to cloud tools, including Windows Autopatch and Microsoft Intune for client update management and Azure Update Manager for server update management.”
He further reiterated, “Remember: WSUS remains operational but is no longer investing in new features.”
In a related move, Microsoft also announced in June the deprecation of NTLM authentication on Windows and Windows servers, advising developers to transition to Kerberos or Negotiation authentication to avoid potential future complications.