Microsoft extends Windows Server 2022 hotpatching until October 2027

Microsoft extends Windows Server 2022 hotpatching until October 2027

Microsoft has extended hotpatching support for Windows Server 2022 Datacenter: Azure Edition through October 2027. The announcement, made on June 29, 2026, means the feature will remain operational for a full year after the operating system's mainstream support ends on October 13, 2026.

The extension is designed to help organizations avoid the operational burden of simultaneously managing an OS migration and a change in patching tools. By extending the window, Microsoft allows enterprises more time to move workloads to Windows Server 2025, the latest Long Term Servicing Channel release, which also supports hotpatching.

The Mechanics of Hotpatching

Hotpatching allows administrators to apply security updates to the in-memory code of running processes without requiring a system reboot. This method reduces the time between the discovery of a vulnerability and the application of a fix, effectively closing the attack surface faster than traditional patching.

While hotpatching eliminates the need for most monthly restarts, it is not a universal solution for all updates. Servers still require a restart for certain categories, including:

• Non-security Windows updates
• Non-Windows updates, such as .NET patches
• A cumulative update that occurs once per quarter

This technology, which mirrors capabilities found in Linux environments such as Red Hat's kpatch and Canonical's Livepatch, was first made generally available for Windows Server 2022 Datacenter: Azure Edition core virtual machines in February 2022.

Eligibility and Limitations

The support extension is not available to all users. It applies exclusively to systems running Windows Server 2022 Datacenter: Azure Edition that are enrolled in hotpatch updates through Azure Arc or Azure Automanage.

Users running Windows Server 2022 on-premises or using the Standard, Essentials, or non-Azure Datacenter editions do not have access to this capability. While these editions will reach their extended end date on October 14, 2031, they will not benefit from the hotpatching extension.

To utilize the extended window, administrators must verify that servers are connected to the Azure management plane. Those using Azure Automanage must check the Machine Configuration profile, while those using Azure Arc must ensure the hotpatch extension is deployed and healthy. Systems showing an Unsupported status may be running builds that predate hotpatch support and will require an update to a supported baseline image.

Broader Strategic Shift

This decision is part of a wider transition toward restart-free patching across the Microsoft ecosystem. The company has expanded the technology's reach over the last two years:

• September 2024: Public preview of hotpatching for Windows Server 2025.
• November 2024: Public preview for Windows 365 and Windows 11 24H2.
• April 2025: General availability for business customers using Windows 11 Enterprise 24H2 on x64 systems.

Microsoft intends to make hotpatch security updates the default behavior for all eligible devices managed through Microsoft Intune and the Microsoft Graph API starting with the May 2026 security update cycle.

For high-availability environments—such as healthcare, government, and financial services—this shift reduces the friction of change management and approval cycles. It also provides a more stable environment for DevOps teams using the OS as container hosts or CI/CD pipeline nodes, as it minimizes disruptions to build pipelines.

Organizations are encouraged to use this extension as a migration window rather than a reason to delay upgrades, with Windows Server 2025 serving as the intended long-term destination.