azure-update-manager

Compare original and translation side by side

🇺🇸

Original

English

🇨🇳

Translation

Chinese

Azure Update Manager Skill

Azure Update Manager 技能

This skill provides expert guidance for Azure Update Manager. Covers troubleshooting, best practices, decision making, limits & quotas, security, configuration, integrations & coding patterns, and deployment. It combines local quick-reference content with remote documentation fetching capabilities.

本技能为Azure Update Manager提供专业指导，涵盖故障排除、最佳实践、决策制定、限制与配额、安全、配置、集成与编码模式以及部署。它结合了本地快速参考内容与远程文档获取能力。

How to Use This Skill

如何使用本技能

IMPORTANT for Agent: Use the Category Index below to locate relevant sections. For categories with line ranges (e.g.,
L35-L120
), use
read_file
with the specified lines. For categories with file links (e.g.,
[security.md](security.md)
), use
read_file
on the linked reference file

IMPORTANT for Agent: If
metadata.generated_at
is more than 3 months old, suggest the user pull the latest version from the repository. If
mcp_microsoftdocs
tools are not available, suggest the user install it: Installation Guide

This skill requires network access to fetch documentation content:

Preferred: Use

mcp_microsoftdocs:microsoft_docs_fetch

with query string

from=learn-agent-skill

. Returns Markdown.

Fallback: Use

fetch_webpage

with query string

from=learn-agent-skill&accept=text/markdown

. Returns Markdown.

Agent 重要提示：使用下方的分类索引定位相关章节。对于带有行范围的分类（如
L35-L120
），使用
read_file
工具读取指定行内容。对于带有文件链接的分类（如
[security.md](security.md)
），使用
read_file
工具读取链接的参考文件。

Agent 重要提示：如果
metadata.generated_at
距今超过3个月，建议用户从代码库拉取最新版本。如果无法使用
mcp_microsoftdocs
工具，建议用户按照安装指南进行安装。

本技能需要网络访问权限以获取文档内容：

优先方式：使用
```
mcp_microsoftdocs:microsoft_docs_fetch
```
工具，查询字符串为
```
from=learn-agent-skill
```
，返回Markdown格式内容。
备选方式：使用
```
fetch_webpage
```
工具，查询字符串为
```
from=learn-agent-skill&accept=text/markdown
```
，返回Markdown格式内容。

Category Index

分类索引

Category	Lines	Description
Troubleshooting	L36-L41	Diagnosing and fixing Azure Update Manager and Automanage onboarding issues, including common error codes, connectivity problems, and remediation steps for failed update operations.
Best Practices	L42-L52	Best practices for configuring Automanage and guest patching on Windows/Linux/Arc VMs, handling SQL Server and Ubuntu/Ubuntu Pro updates, and managing SMB over QUIC in Update Manager.
Decision Making	L53-L58	Planning patch strategies across subscriptions and guidance for migrating patch management from Configuration Manager to Azure Update Manager
Limits & Quotas	L59-L68	OS, region, image, and workload support limits for Update Manager, including supported update sources/types, change tracking matrix, and unsupported scenarios.
Security	L69-L74	Configuring disk encryption for Automanaged VMs and setting up RBAC roles/permissions to securely manage and control access to Azure Update Manager.
Configuration	L75-L95	Configuring Update Manager: update schedules, scopes, alerts, policies, ESU, hotpatching, change tracking, workspaces/DCRs, reports, Resource Graph, and cross-subscription patching.
Integrations & Coding Patterns	L96-L108	Using SDKs (Go/Java/JS/Python) and REST APIs to assign Automanage profiles, manage VM/Arc server updates, and implement pre/post maintenance with Functions, webhooks, and runbooks
Deployment	L109-L121	Deploying and managing Automanage/Update Manager at scale: onboarding VMs/Arc servers, upgrading/moving profiles and VMs across regions/tenants, and using Policy plus extension release/issue tracking.

分类	行范围	描述
故障排除	L36-L41	诊断并修复Azure Update Manager和Automanage的注册问题，包括常见错误代码、连接问题以及更新操作失败的补救步骤。
最佳实践	L42-L52	为Windows/Linux/Arc VM配置Automanage和来宾补丁、处理SQL Server和Ubuntu/Ubuntu Pro更新、在Update Manager中管理SMB over QUIC的最佳实践。
决策制定	L53-L58	跨订阅规划补丁策略，以及从Configuration Manager迁移到Azure Update Manager的补丁管理指导
限制与配额	L59-L68	Update Manager的操作系统、区域、镜像和工作负载支持限制，包括支持的更新源/类型、变更跟踪矩阵以及不支持的场景。
安全	L69-L74	为Automanaged VM配置磁盘加密，以及设置RBAC角色/权限以安全管理和控制对Azure Update Manager的访问。
配置	L75-L95	配置Update Manager：更新计划、范围、警报、策略、ESU、热补丁、变更跟踪、工作区/DCR、报表、Resource Graph以及跨订阅补丁。
集成与编码模式	L96-L108	使用SDK（Go/Java/JS/Python）和REST API分配Automanage配置文件、管理VM/Arc服务器更新，并通过Functions、webhook和运行手册实现维护前后的操作
部署	L109-L121	大规模部署和管理Automanage/Update Manager：注册VM/Arc服务器、跨区域/租户升级/迁移配置文件和VM，以及使用Policy加上扩展发布/问题跟踪。

Troubleshooting

故障排除

Topic	URL
Troubleshoot Azure Automanage onboarding failures and errors	https://learn.microsoft.com/en-us/azure/automanage/common-errors
Troubleshoot errors and issues in Azure Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/troubleshoot

主题	链接
排查Azure Automanage注册失败和错误	https://learn.microsoft.com/en-us/azure/automanage/common-errors
排查Azure Update Manager中的错误和问题	https://learn.microsoft.com/en-us/azure/update-manager/troubleshoot

Best Practices

最佳实践

Topic	URL
Apply Automanage best practices to Azure Arc-enabled servers	https://learn.microsoft.com/en-us/azure/automanage/automanage-arc
Apply Automanage best practices to Linux VMs	https://learn.microsoft.com/en-us/azure/automanage/automanage-linux
Manage SMB over QUIC using Automanage best practices	https://learn.microsoft.com/en-us/azure/automanage/automanage-smb-over-quic
Apply Automanage best practices to Windows Server VMs	https://learn.microsoft.com/en-us/azure/automanage/automanage-windows-server
Apply patching best practices for SQL Server on Azure VMs	https://learn.microsoft.com/en-us/azure/update-manager/guidance-patching-sql-server-azure-vm
Handle Ubuntu security and Ubuntu Pro in Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/security-awareness-ubuntu-support
Configure automatic guest patching for Azure VMs	https://learn.microsoft.com/en-us/azure/update-manager/support-matrix-automatic-guest-patching

主题	链接
为Azure Arc启用的服务器应用Automanage最佳实践	https://learn.microsoft.com/en-us/azure/automanage/automanage-arc
为Linux VM应用Automanage最佳实践	https://learn.microsoft.com/en-us/azure/automanage/automanage-linux
使用Automanage最佳实践管理SMB over QUIC	https://learn.microsoft.com/en-us/azure/automanage/automanage-smb-over-quic
为Windows Server VM应用Automanage最佳实践	https://learn.microsoft.com/en-us/azure/automanage/automanage-windows-server
为Azure VM上的SQL Server应用补丁最佳实践	https://learn.microsoft.com/en-us/azure/update-manager/guidance-patching-sql-server-azure-vm
在Update Manager中处理Ubuntu安全和Ubuntu Pro	https://learn.microsoft.com/en-us/azure/update-manager/security-awareness-ubuntu-support
为Azure VM配置自动来宾补丁	https://learn.microsoft.com/en-us/azure/update-manager/support-matrix-automatic-guest-patching

Decision Making

决策制定

Topic	URL
Plan cross-subscription patching with Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/cross-subscription-patching
Plan migration from Configuration Manager to Azure Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/guidance-migration-azure

主题	链接
使用Update Manager规划跨订阅补丁	https://learn.microsoft.com/en-us/azure/update-manager/cross-subscription-patching
规划从Configuration Manager迁移到Azure Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/guidance-migration-azure

Limits & Quotas

限制与配额

Topic	URL
Understand Change Tracking support matrix and limitations	https://learn.microsoft.com/en-us/azure/azure-change-tracking-inventory/change-tracking-inventory-support-matrix
Manage customized images in Azure Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/manage-updates-customized-images
Understand supported update sources and types	https://learn.microsoft.com/en-us/azure/update-manager/support-matrix
Review OS support matrix for Azure Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/support-matrix-updates
Check supported Azure regions for Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/supported-regions
Identify unsupported workloads in Azure Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/unsupported-workloads

主题	链接
了解变更跟踪支持矩阵和限制	https://learn.microsoft.com/en-us/azure/azure-change-tracking-inventory/change-tracking-inventory-support-matrix
在Azure Update Manager中管理自定义镜像	https://learn.microsoft.com/en-us/azure/update-manager/manage-updates-customized-images
了解支持的更新源和类型	https://learn.microsoft.com/en-us/azure/update-manager/support-matrix
查看Azure Update Manager的操作系统支持矩阵	https://learn.microsoft.com/en-us/azure/update-manager/support-matrix-updates
检查Update Manager支持的Azure区域	https://learn.microsoft.com/en-us/azure/update-manager/supported-regions
识别Azure Update Manager中不支持的工作负载	https://learn.microsoft.com/en-us/azure/update-manager/unsupported-workloads

Security

安全

Topic	URL
Configure Azure disk encryption for Automanaged VMs	https://learn.microsoft.com/en-us/azure/automanage/overview-azure-disk-encryption
Assign RBAC roles for Azure Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/roles-permissions

主题	链接
为Automanaged VM配置Azure磁盘加密	https://learn.microsoft.com/en-us/azure/automanage/overview-azure-disk-encryption
为Azure Update Manager分配RBAC角色	https://learn.microsoft.com/en-us/azure/update-manager/roles-permissions

Configuration

配置

Topic	URL
Create and configure custom Automanage profiles for VMs	https://learn.microsoft.com/en-us/azure/automanage/virtual-machines-custom-profile
Create data collection rules for Azure Change Tracking	https://learn.microsoft.com/en-us/azure/azure-change-tracking-inventory/create-data-collection-rule
Configure workspaces and data collection rules for Change Tracking	https://learn.microsoft.com/en-us/azure/azure-change-tracking-inventory/tutorial-change-workspace-configure-data-collection-rule
Configure Windows Update client for Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/configure-wu-agent
Set up cross-subscription patching in Azure	https://learn.microsoft.com/en-us/azure/update-manager/enable-cross-subscription-patching
Enroll Windows Server ESU with Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/extended-security-updates
Enable and configure alerts in Azure Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/manage-alerts
Configure and manage dynamic scopes for patching	https://learn.microsoft.com/en-us/azure/update-manager/manage-dynamic-scoping
Configure hotpatching on Azure Arc-enabled machines	https://learn.microsoft.com/en-us/azure/update-manager/manage-hot-patching-arc-machines
Manage existing pre and post maintenance events	https://learn.microsoft.com/en-us/azure/update-manager/manage-pre-post-events
Manage update configuration settings in Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/manage-update-settings
Create custom Update Manager reports with workbooks	https://learn.microsoft.com/en-us/azure/update-manager/manage-workbooks
Enable periodic assessment via Azure Policy	https://learn.microsoft.com/en-us/azure/update-manager/periodic-assessment-at-scale
Create pre and post maintenance events in Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/pre-post-events-schedule-maintenance-configuration
Access Update Manager data via Azure Resource Graph	https://learn.microsoft.com/en-us/azure/update-manager/query-logs
Use sample Resource Graph queries for Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/sample-query-logs
Configure recurring update schedules in Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/scheduled-patching

主题	链接
为VM创建和配置自定义Automanage配置文件	https://learn.microsoft.com/en-us/azure/automanage/virtual-machines-custom-profile
为Azure变更跟踪创建数据收集规则	https://learn.microsoft.com/en-us/azure/azure-change-tracking-inventory/create-data-collection-rule
为变更跟踪配置工作区和数据收集规则	https://learn.microsoft.com/en-us/azure/azure-change-tracking-inventory/tutorial-change-workspace-configure-data-collection-rule
为Update Manager配置Windows Update客户端	https://learn.microsoft.com/en-us/azure/update-manager/configure-wu-agent
在Azure中设置跨订阅补丁	https://learn.microsoft.com/en-us/azure/update-manager/enable-cross-subscription-patching
通过Update Manager注册Windows Server ESU	https://learn.microsoft.com/en-us/azure/update-manager/extended-security-updates
在Azure Update Manager中启用和配置警报	https://learn.microsoft.com/en-us/azure/update-manager/manage-alerts
配置和管理补丁的动态范围	https://learn.microsoft.com/en-us/azure/update-manager/manage-dynamic-scoping
在Azure Arc启用的机器上配置热补丁	https://learn.microsoft.com/en-us/azure/update-manager/manage-hot-patching-arc-machines
管理现有维护前后事件	https://learn.microsoft.com/en-us/azure/update-manager/manage-pre-post-events
在Update Manager中管理更新配置设置	https://learn.microsoft.com/en-us/azure/update-manager/manage-update-settings
使用工作簿创建自定义Update Manager报表	https://learn.microsoft.com/en-us/azure/update-manager/manage-workbooks
通过Azure Policy启用定期评估	https://learn.microsoft.com/en-us/azure/update-manager/periodic-assessment-at-scale
在Update Manager中创建维护前后事件	https://learn.microsoft.com/en-us/azure/update-manager/pre-post-events-schedule-maintenance-configuration
通过Azure Resource Graph访问Update Manager数据	https://learn.microsoft.com/en-us/azure/update-manager/query-logs
使用Update Manager的示例Resource Graph查询	https://learn.microsoft.com/en-us/azure/update-manager/sample-query-logs
在Update Manager中配置定期更新计划	https://learn.microsoft.com/en-us/azure/update-manager/scheduled-patching

Integrations & Coding Patterns

集成与编码模式

Topic	URL
Use Go SDK to assign Automanage configuration profiles	https://learn.microsoft.com/en-us/azure/automanage/quick-go-sdk
Use Java SDK to assign Automanage configuration profiles	https://learn.microsoft.com/en-us/azure/automanage/quick-java-sdk
Use JavaScript SDK to assign Automanage configuration profiles	https://learn.microsoft.com/en-us/azure/automanage/quick-javascript-sdk
Use Python SDK to assign Automanage configuration profiles	https://learn.microsoft.com/en-us/azure/automanage/quick-python-sdk
Choose and use Automanage SDKs across languages	https://learn.microsoft.com/en-us/azure/automanage/reference-sdk
Use REST API for Arc-enabled server updates	https://learn.microsoft.com/en-us/azure/update-manager/manage-arc-enabled-servers-programmatically
Use Azure REST API to manage VM updates	https://learn.microsoft.com/en-us/azure/update-manager/manage-vms-programmatically
Implement pre/post maintenance using Azure Functions	https://learn.microsoft.com/en-us/azure/update-manager/tutorial-using-functions
Trigger pre/post maintenance via webhooks and runbooks	https://learn.microsoft.com/en-us/azure/update-manager/tutorial-webhooks-using-runbooks

主题	链接
使用Go SDK分配Automanage配置文件	https://learn.microsoft.com/en-us/azure/automanage/quick-go-sdk
使用Java SDK分配Automanage配置文件	https://learn.microsoft.com/en-us/azure/automanage/quick-java-sdk
使用JavaScript SDK分配Automanage配置文件	https://learn.microsoft.com/en-us/azure/automanage/quick-javascript-sdk
使用Python SDK分配Automanage配置文件	https://learn.microsoft.com/en-us/azure/automanage/quick-python-sdk
选择和使用跨语言的Automanage SDK	https://learn.microsoft.com/en-us/azure/automanage/reference-sdk
使用REST API管理Arc启用的服务器更新	https://learn.microsoft.com/en-us/azure/update-manager/manage-arc-enabled-servers-programmatically
使用Azure REST API管理VM更新	https://learn.microsoft.com/en-us/azure/update-manager/manage-vms-programmatically
使用Azure Functions实现维护前后操作	https://learn.microsoft.com/en-us/azure/update-manager/tutorial-using-functions
通过webhook和运行手册触发维护前后操作	https://learn.microsoft.com/en-us/azure/update-manager/tutorial-webhooks-using-runbooks

Deployment

部署

Topic	URL
Onboard VMs to Automanage with ARM templates	https://learn.microsoft.com/en-us/azure/automanage/arm-deploy
Onboard Arc-enabled servers to Automanage with ARM templates	https://learn.microsoft.com/en-us/azure/automanage/arm-deploy-arc
Upgrade existing Automanage machines to the latest version	https://learn.microsoft.com/en-us/azure/automanage/automanage-upgrade
Move Automanage configuration profiles between Azure regions	https://learn.microsoft.com/en-us/azure/automanage/move-automanaged-configuration-profile
Move Automanaged virtual machines across Azure regions	https://learn.microsoft.com/en-us/azure/automanage/move-automanaged-vms
Repair Automanage accounts after subscription tenant moves	https://learn.microsoft.com/en-us/azure/automanage/repair-automanage-account
Enable Automanage for VMs using Azure Policy	https://learn.microsoft.com/en-us/azure/automanage/virtual-machines-policy-enable
Deploy Change Tracking at scale using Azure Policy	https://learn.microsoft.com/en-us/azure/azure-change-tracking-inventory/enable-change-tracking-at-scale-policy
Review Change Tracking extension versions and known issues	https://learn.microsoft.com/en-us/azure/azure-change-tracking-inventory/extension-version-details
Track Arc-enabled VM extension releases and issues for Update Manager	https://learn.microsoft.com/en-us/azure/update-manager/overview-arc-enabled-vm-extensions

主题	链接
使用ARM模板将VM注册到Automanage	https://learn.microsoft.com/en-us/azure/automanage/arm-deploy
使用ARM模板将Arc启用的服务器注册到Automanage	https://learn.microsoft.com/en-us/azure/automanage/arm-deploy-arc
将现有Automanage机器升级到最新版本	https://learn.microsoft.com/en-us/azure/automanage/automanage-upgrade
在Azure区域之间迁移Automanage配置文件	https://learn.microsoft.com/en-us/azure/automanage/move-automanaged-configuration-profile
在Azure区域之间迁移Automanaged虚拟机	https://learn.microsoft.com/en-us/azure/automanage/move-automanaged-vms
订阅租户迁移后修复Automanage账户	https://learn.microsoft.com/en-us/azure/automanage/repair-automanage-account
使用Azure Policy为VM启用Automanage	https://learn.microsoft.com/en-us/azure/automanage/virtual-machines-policy-enable
使用Azure Policy大规模部署变更跟踪	https://learn.microsoft.com/en-us/azure/azure-change-tracking-inventory/enable-change-tracking-at-scale-policy
查看变更跟踪扩展版本和已知问题	https://learn.microsoft.com/en-us/azure/azure-change-tracking-inventory/extension-version-details
跟踪Update Manager的Arc启用VM扩展发布和问题	https://learn.microsoft.com/en-us/azure/update-manager/overview-arc-enabled-vm-extensions