phased rollout

Winsage
June 22, 2026
Microsoft is preparing for the release of Windows 11 version 26H2, which aims to streamline the upgrade process for organizations. This version will be available for testing through the Windows Insider Program and utilizes a compact enablement package for a quicker transition from supported versions like 24H2 and 25H2. Devices on Windows 11 version 26H1 will not be able to upgrade to 26H2, as it is based on a different core. Upgrading to version 26H2 resets the support lifecycle, providing 24 months of support for consumer and standard business editions and 36 months for enterprise and education editions. Organizations are encouraged to test the update for compatibility and use deployment tools for a phased rollout.
Winsage
June 15, 2026
Microsoft has expanded the rollout of the Secure Boot 2023 certificate update to more Windows 11 and Windows 10 devices with the June 2026 Patch Tuesday update (KB5094126). This update aims to ensure that most supported consumer PCs are classified as high confidence, meaning necessary certificates are either installed or will be applied automatically. Secure Boot is a firmware security feature that verifies the software attempting to load during the startup process, blocking unauthorized software. The certificates supporting Secure Boot, issued in 2011, are expiring in stages starting June 24, 2026, prompting Microsoft to deploy replacement certificates. Most home users do not need to take manual action as the updates will occur automatically via Windows Update. Users can check their Secure Boot certificate status in the Windows Security app. A yellow warning indicates pending compatibility data, while a red alert suggests a firmware incompatibility requiring a BIOS update. Multiple reboots during the update process are normal, and a new SecureBoot folder in Windows is for staging cryptographic files. Older PCs may experience longer update times, and some may not receive updates due to firmware issues. HP users should check for BIOS updates if encountering BitLocker recovery loops. IT administrators should monitor device classifications and manually initiate updates for devices not in the high confidence category. Devices with Secure Boot disabled cannot receive updates, leaving them vulnerable. The expiration of the Microsoft Corporation KEK CA 2011 certificate on June 24 does not immediately affect device functionality, but it limits Microsoft's ability to sign new bootkit blacklist updates.
Winsage
June 10, 2026
Microsoft has released the Windows 10 KB5094127 extended security update, which addresses vulnerabilities identified during the June 2026 Patch Tuesday and enhances monitoring of updated Secure Boot certificates. Users on Windows 10 Enterprise LTSC or enrolled in the ESU program can install it via the Windows Update settings. The update upgrades Windows 10 to build 19045.7417 and Windows 10 Enterprise LTSC 2021 to build 19044.7417. It focuses on security enhancements and bug fixes, resolving a total of 200 vulnerabilities, including three zero-day flaws. Key features include improved File Explorer search functionality for Chinese text and UTF-8 encoded files, dynamic status reporting for Secure Boot states, a new policy setting to limit Secure Boot service data sent to Microsoft, and enhanced targeting data for automatic receipt of new Secure Boot certificates. A known issue may cause BitLocker recovery notifications on certain systems, particularly those with specific BitLocker Group Policy settings. Microsoft recommends removing the Group Policy setting and suspending/resuming BitLocker as a temporary fix.
Winsage
June 5, 2026
Microsoft has resumed the automatic installation of the Microsoft 365 Copilot app on select Windows PCs that already have Microsoft 365 applications installed. This rollout, which had been paused in March 2026 due to technical issues, is now moving forward, with users expected to see the Copilot app in their Installed Apps section if they have an active Microsoft 365 license. IT administrators can manage this rollout and opt out if desired. The phased rollout began on June 4 and is projected to conclude by the end of June, with specific timelines for various feature flags. Users who already have the Copilot app or are located in the European Economic Area will not be affected by this initiative.
AppWizard
June 2, 2026
Google is rolling out wallpaper-based theming for Gemini within the Google app, transitioning from hidden manual activation to a beta version accessible to users, including those on the Pixel 9 with version 17.27.33.sa.arm64. This update aligns Gemini with the Material You design philosophy, allowing the interface to dynamically adjust to the user's wallpaper colors, moving away from the previous static color scheme. Currently, changes are visible in Gemini's floating overlay UI, which adopts a tint reflecting the system theme, while the main interface has not yet fully implemented dynamic theming, indicating a phased rollout approach.
Winsage
May 19, 2026
Windows 11 users can now reposition their taskbar to the top, bottom, left, or right of their screens with the latest update for Windows insiders. To use this feature, users must be on the latest experimental build and can access it through Taskbar settings. The update also allows users to customize the alignment of the Start button based on the taskbar's position and introduces options for smaller taskbar buttons. However, auto-hide and tablet-optimized settings are not supported in alternate positions, and touch gestures for these locations are still being developed. Additionally, users can expect changes to the Start menu, including independent control over the Pinned and Recommended sections, the ability to disable file recommendations without affecting recent files, size adjustments, and privacy options to hide personal information. Users must enroll in the Windows Insider Program to access these features, with broader rollout timelines remaining uncertain.
Winsage
May 18, 2026
Microsoft has alerted users that Secure Boot certificates will begin to expire in June, affecting most Windows devices. Users must update these certificates to avoid disruptions, as failing to install the latest Windows update could prevent devices from booting securely. A "one-time restart" will be required after the update to load new certificates. If the update is not installed by June 1, users may see a red stop icon in the Windows Security app. The update issued on May 12 was modified on May 15 to warn that it might fail to install. Microsoft indicates that most users will need to restart their PCs, although this may revert the update. The latest updates will expand the number of devices eligible for new Secure Boot certificates, but users are uncertain about how many PCs will be affected due to a phased rollout approach.
Search