Manage updates in Azure Stack overview
Applies to: Azure Stack integrated systems
You need to keep Azure Stack up to date by applying Azure Stack full and express updates, hotfixes, and original equipment manufacturer (OEM) package updates. Keep Azure Stack current with the latest updates applies the latest security patches, product updates, and driver, and firmware updates to your system. This article provides an overview of the different update packages, the cadence for these release packages, where to find out about current releases, and the overall update process.
You cannot apply Azure Stack update packages to the Azure Stack Development Kit (ASDK). The update packages are designed for integrated systems. For information, see Redeploy the ASDK.
Update package types
There are three types of update packages for integrated systems:
Azure Stack software updates. Microsoft is responsible for the end-to-end servicing lifecycle for the Microsoft software update packages. These packages can include the latest Windows Server security updates, non-security updates, and Azure Stack feature updates. You download theses update packages directly from Microsoft.
Each update package has a corresponding type, Full or Express.
Full update packages update the physical host operating systems in the scale unit and require a larger maintenance window.
Express update packages are scoped and do not update the underlying physical host operating systems.
Azure Stack hotfixes. Microsoft provides hotfixes for Azure Stack that address a specific issue that is often preventative or time-sensitive. Each hotfix is released with a corresponding Microsoft Knowledge Base article that details the issue, cause, and resolution. You download and install hotfixes just like the regular full update packages for Azure Stack. Hotfixes are cumulative and can install in minutes.
OEM hardware-vendor-provided updates. Azure Stack hardware partners are responsible for the end-to-end servicing lifecycle (including guidance) for the hardware-related firmware and driver update packages. In addition, Azure Stack hardware partners own and maintain guidance for all software and hardware on the hardware lifecycle host. The OEM hardware vendor hosts these update packages on their own download site.
When to update
The three type of updates are released with the following cadence:
Azure Stack software updates. Microsoft typically releases software update packages each month.
Azure Stack hotfixes. Hotfixes are time-sensitive releases that can be released at any time.
OEM hardware vendor-provided updates. OEM hardware vendors release their updates on an as-needed basis.
To continue to receive support, you must keep your Azure Stack environment on a supported Azure Stack software version. For more information, see Azure Stack Servicing Policy.
Where to get notice of an update
Notice of updates varies on a couple of factors, such as your connection to the Internet and the type of update.
Microsoft software updates and hotfixes
An update alert for Microsoft software updates and hotfixes will appear in the Update blade for Azure Stack instances that are connected to the internet.
OEM hardware vendor-provided updates
OEM updates will depend on your manufacturer. You will need to establish a communication channel with your OEM so that you aware when you have updates from your OEM that need to be applied. For more information about the OEMs and the OEM update process, see Apply Azure Stack original equipment manufacturer (OEM) updates.
Once you know you have an update, apply update with the following steps.
Plan for the update.
Prepare your Azure Stack to make the update process go as smoothly as possible so that there is a minimal impact on your users. Notifying your users of any possible service outage and then follow the steps to prepare your instance for the update. For more steps to plan for the update, see Plan for an Azure Stack update.
Upload and prepare the update package.
For internet-connected Azure Stack environments, Azure Stack software updates and hotfixes are automatically imported into the system and prepared for update.
For internet-disconnected Azure Stack environments and environments with weak or intermittent internet-connectivity, update packages are imported into Azure Stack storage via the Azure Stack administrator portal. For more steps to upload and prepare the update package, see Upload and prepare an Azure Stack update package.
All OEM update packages are manually imported into your environment, regardless of your Azure Stack system’s internet connectivity. For more steps to import and prepare the update package, see Upload and prepare an Azure Stack update package).
Apply the update.
Apply the update using the Update blade in the Azure Stack. During the update, monitor the update progress, and if necessary, troubleshoot the update process. For more steps to plan for the update, see Apply an Azure Stack update.
The update resource provider
Azure Stack includes an update resource provider that handles the application of Microsoft software updates. This provider checks that updates are applied across all physical hosts, Service Fabric applications and runtimes, and all infrastructure virtual machines and their associated services.
As updates install, you can view high-level status as the update process targets the various subsystems in Azure Stack (for example, physical hosts, and infrastructure virtual machines).