We are in the process of creating a policy for deploying windows updates. Our network was an isolated network with no access to the internet till now. we have recently deployed SCCM and software update point has been installed and configured.
Now we want to have policies create for deploying windows updates on servers and clients.
I am concerned about the servers as we have servers with different roles like
File server, sql clusters
I want some suggestions if is it safe to deploy security updates on all servers at the same time especially the ones that are part of the clusters.
looking for some best practices related to deploying windows updates.