This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I'm looking for a solution with minimum administrator effort for keeping up to date on all employer's devices.
In the organization, I have about 50 devices that they onboarded to Defender for Cloud's portal. All devices showing on Microsoft Defender > Assets > Devices.
Every day we receive a lot of update notifications and our security score decreases based on updates.
It's very hard to manually update all applications that are installed on devices. For example, applications are:
Adobe Acrobat
Firefox
Edge
Chrome
Winzip
and etc.
My question how can I update all devices and manage them? With Intune or Defender for Endpoint?
How do medium or large companies handle it?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Mohsen Akhavan, Long time not heard from you. I am writing to see if there's anything else we can help. If the answer is helpful, would you mind click "Accept Answer" to help others quickly find the suggestion. Thanks!
@Mohsen Akhavan, Thanks for the reply. To manage the app on the devices, you can consider enroll the devices into Intune and manage it.
Based as i know, some app types we deployed via Intune like Store app, built-in app, web app can update automatically.
https://learn.microsoft.com/en-us/mem/intune/apps/apps-add
For example, for windows platform, if the app can be found in Microsoft Store new, we can deploy the app via Microsoft store new and Apps that are deployed from the Microsoft Store are automatically kept up to date to the latest version of the app. For this feature to work properly for UWP apps, the Turn off Automatic Download and Install of updates shouldn't be enabled.
https://learn.microsoft.com/en-us/mem/intune/apps/store-apps-microsoft
If the app is not available in Microsoft Store new, we can check if the app has silent install command. If yes, then we can consider deploy the app via Intune win32. And deploy update via supersedence.
https://learn.microsoft.com/en-us/mem/intune/apps/apps-win32-add
Hope the above information can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@Mohsen Akhavan, Hope the above information can help. If there is anything else we can help, feel free to let us know.