I need to say that I'm still new to SCCM delivering updates to clients.
I'd like to implement the following updating strategy:
1) WSUS synchronization from Microsoft, once per month, after Patch Tuesday
2) SCCM Deployment packages: Windows 10, Office, Windows Defender, Windows Defender definitions
3) automatic deployment to PCs scheduled in three fases:
3a) a few Test PCs, once per month, right after Patch Tuesday
3b) larger pool of test PCs, one week after 2a
3c) All PCs, three weeks after 2a
4) WSUS should deny direct access from clients. Only source of updates has to be SCCM
Could anybody guide me through the steps to achiving the above?
Thank you and best regards.