Question How do I enable automatic updates of Microsoft Defender antivirus when Windows 11 updates are disabled?

jojo2023

Prominent
Feb 28, 2023
5
0
510
In the Local Group Policy Editor, in the Automatic Update Setting, option 2 is selected – Notify before downloading and installing any updates. I think it's not worth explaining this point, especially due to massive problems after installation (KB5041585). But with this setup, the Update of the threat detection mechanism for Microsoft Defender Antivirus is not downloaded and installed automatically, so you have to install it manually. The essence of the issue is that system updates can be monitored, and antivirus updates downloaded and installed automatically.
 
Selective updates.....

Not something that I have worked with (full disclosure) but Powershell may be one way to meet the requirements.

FYI:

https://techdirectarchive.com/2020/...owershell-and-task-scheduler/#google_vignette

https://www.nakivo.com/blog/automate-windows-updates-using-powershell-short-overview/

Allow all update downloads but not the automatic installs.

Then use a Powershell cmdlet or script to find/identify and install just the antivirus updates.

You may need to parse the update's respective titles to find the required security updates to be installed thereafter per your requirements.

The NAKIVO link has some examples that may prove helpful.