Skip to Content

MC1239883: New Secure Boot update resources for Azure Virtual Desktop, Windows 365, and Microsoft Intune

By: Author Alex Lim

Posted on

Categories Update

Home » Update » MC1239883: New Secure Boot update resources for Azure Virtual Desktop, Windows 365, and Microsoft Intune

Summary

  • New documentation available for IT administrators on Secure Boot certificate updates for Azure Virtual Desktop and Windows 365 Cloud PCs.
  • Guidance provided for managing update readiness and monitoring Secure Boot certificate status using Microsoft Intune.
  • Secure Boot certificates will start expiring in June 2026, requiring planning for updates.
  • Secure Boot status report in Windows Autopatch is restored for visibility into device readiness.
  • Organizations should review the new documentation and utilize Intune and Windows Autopatch reporting for update planning.

Admin Impact: High
User Impact: Low
Release Start: 01 Jun 2026
Release End: 01 Jun 2026
Services: Windows
Category: Stay informed
Tags: Admin Action

History

2/26/2026 Item Added to Message Center

Microsoft Message

New documentation is now available to help IT administrators prepare for Secure Boot certificate updates and manage update readiness across virtual and cloud‑managed Windows environments. The documentation covers Secure Boot certificate updates for Azure Virtual Desktop and Windows 365 Cloud PCs, as well as monitoring Secure Boot certificate status using Microsoft Intune remediations to provide visibility into readiness across managed devices. Together, these resources help ensure virtual and cloud‑managed Windows environments remain secure and continue to receive updates after June 2026.

When will this happen

This documentation is available now. Secure Boot certificates begin expiring in June 2026.

How this will affect your organization

Organizations managing virtual or cloud‑managed Windows environments may need to review Secure Boot certificate update planning and readiness. The documentation provides guidance for updating Secure Boot certificates in Azure Virtual Desktop and Windows 365 environments and describes how Microsoft Intune can be used to monitor Secure Boot certificate status across managed devices.

In addition, the Secure Boot status report in Windows Autopatch is available again after being temporarily disabled, restoring visibility into Secure Boot readiness for devices enrolled in Windows Autopatch.

What you need to do to prepare

Review the new documentation to help plan Secure Boot certificate updates and assess readiness across your virtual and cloud‑managed Windows environments. Where applicable, use Microsoft Intune and Windows Autopatch reporting to monitor Secure Boot certificate status and support update planning.

Additional information

  • Secure Boot Certificate Updates for Azure Virtual Desktop
  • Secure Boot Certificate Updates for Windows 365
  • Monitoring Secure Boot certificate status with Microsoft Intune remediations
  • Secure Boot status report in Windows Autopatch
  • Secure Boot playbook for certificates expiring in 2026
  • Secure Boot Certificate updates: Guidance for IT professionals and organizations