Drake ITS is continuously working to better protect University computers and confidential information. As part of these efforts, we are changing how vendor security patches are applied to Drake-owned Windows computers.

Microsoft releases security patches monthly to fix exploitable flaws. In order for the patches to be fully applied, the device being patched must be restarted afterwards. While devices remind you to restart, you can currently restart on your own schedule. This has resulted in some Drake-owned computers going unpatched for long periods of time.

Beginning April 20, ITS will configure Drake-owned computers running Windows to provide additional restart reminders after patches are applied, with options to restart immediately or schedule another time. While the exact appearance and wording may vary based on your operating system version, the below screenshots show the general notification and settings. While working from home or other off-campus locations, the notification and restart process may be delayed or suspended until the computer returns to the campus network.

If the restart doesn’t happen within two days of the patch installation, your Windows computer will restart automatically between 10 p.m. and 5 a.m. If it’s asleep during that time, it will restart when you wake it up.

The best way to avoid disruption or lost work is to restart your computer when initially prompted, or schedule a restart at a more convenient time within the two-day grace period.

If you have any questions about these changes, please reach out to me.

—Peter Lundstedt, ITS