Sisyphus was condemned to forever roll a boulder up hill only to have it roll back down each time he reached to the top.
So too, patching… is the constant, thankless job of keeping systems up to date. As soon as everything is up-to-date new vulnerabilities are discovered and it’s time to do it all over again.
And the patches do keep on coming. This year started off with multiple zero days actively being exploited.
More and more endpoints are managed by Intune and Microsoft does a reasonably complete job of automating Microsoft product patching in this environment, but you are still out in the cold when it comes to 3rd party apps. 3rd party vulnerabilities are just as important to security and just as valuable to the bad guys – in fact 3rd party vulnerabilities are particularly attractive to attackers since we do a much poorer job of patching 3rd party apps.
In this session, we’ll look at what Intune actually provides for third-party patching, what it doesn’t, and what you must build around it to achieve real operational control. We’ll break down the architectural realities behind WinGet, Intune’s app model, and the new catalog capabilities, and we’ll examine where these tools help—and where they fall short.
We’ll walk through:
- How Intune handles third-party apps today
The app types, the packaging models, and the practical limits of each.
- WinGet and the Intune integration
What it automates, what it doesn’t, and why “availability” is not the same as “patch compliance.”
- The new Intune Enterprise App Catalog
What’s in it, how it works, and the operational gaps you still need to close.
- Why third-party patching is fundamentally different from Microsoft patching
Release cycles, silent install switches, vendor packaging inconsistencies, and the lack of a unified metadata standard.
- Compliance reporting that actually means something
How to measure patch posture when Intune’s built-in reporting only tells part of the story.
- Operational patterns that work
Packaging pipelines, automation strategies, and governance controls that keep you out of the “manual packaging forever” trap.
If you’re tired of hearing that third-party patching in Intune is “solved” when your real-world experience says otherwise, I think you’ll appreciate this session.
Sponsored by Action1, this webinar will feature Gene Moody, Field CTO at Action1, who will demonstrate how organizations can deploy and verify third-party application updates in real time - eliminating guesswork around who received which updates, when they were delivered, which deployments succeeded or failed, and which systems have yet to check in. Attendees will also see how the entire process can be automated and seamlessly integrated with Windows Update automation. Finally, Gene will demonstrate how updates can be deployed in phased rings to ensure a smooth rollout and identify issues early before broad deployment.
Please join us for this real training for free session.