Does a laptop have to be connected to the domain/network in order to know that a deadline has been reached for software updates, or does the policy stay with it and kick in no matter if it is connected or not?

Thanks

Are there maintenance windows in place that might alter patch deployment behavior?

Are there custom power profiles defined that might force a machine to wake up?

Are there internet facing MPs/SUPs?

Hows your client update policy set?

It's a deceptively complex question you're asking, honestly.

This is not a simple question but in a nutshell "No it will not deploy the SU", Not unless you have directaccess or IBCM.

Package deployment on the other hand WILL work.

When they come back to the network the machine will see the deadline has passed and install either immediately or wait for the maintenance window.

I don't have DirectAccess or IBCM set up, but we are going to go with Intune here pretty soon. I am deploying the SCCM 2012 R2 client to sites now and I just wanted to know the behavior of the client on laptops that get removed from the network on a nightly basis to be taken home by the end-users. 

Thanks Garth and Matt. 

• Edited by I AM Sir Ask Alot 14 hours 50 minutes ago

Just to tell you , I have had a few discussions offline because of your post today.

So... It is possible that your CM12 Client WILL install the SU when they are remote to the office.

Here is a slighted edit version of the email I got about this.

There are multiple scans involved including the actual time the client gets an update deployment via policy. If the deployment is required, it will begin downloading the applicable updates as soon as that scan is finished (after the available time of course also). 

It will also perform another scan at the deadline time (or when manually initiated by the user) and will use the cached update catalog if it cant communicate with the SUP.

Intranet clients may choose to use MS as binary download location if the appropriate checkbox is checked *and* the updates dont exist on a preferred DP. Internet clients will always try to download updates from MS first (this is non-configurable).

I don't have DirectAccess or IBCM set up, but we are going to go with Intune here pretty soon. I am deploying the SCCM 2012 R2 client to sites now and I just wanted to know the behavior of the client on laptops that get removed from the network on a nightly basis to be taken home by the end-users. 

Thanks Garth and Matt. 

• Edited by I AM Sir Ask Alot Wednesday, June 17, 2015 5:05 PM

Thanks Garth

I actually do check the box that states to download updates from Microsoft if they are not available on a preferred DP, so that makes sense. 

• Edited by I AM Sir Ask Alot 13 hours 1 minutes ago