<p>If you&#8217;re using WSUS in a corporate environment you might have noticed that Windows 10 likes to update device drivers from the Internet and along the way to bypass the WSUS policies. In order to prevent your Windows 10 client machines from updating the device drivers from the Internet, you&#8217;ll have to use a group policy.</p>
<p>Create a new GPO and edit the policy.</p>
<p><a href="https://www.wincert.net/wp-content/uploads/2018/03/gpo_prevent_1.png"><img class="alignnone wp-image-2493 size-full" title="drivers" src="https://www.wincert.net/wp-content/uploads/2018/03/gpo_prevent_1.png" alt="drivers" width="386" height="180" /></a></p>
<p>In the left pane navigate to:</p>
<p><strong>Computer Configuration | Administrative Templates | System | Device Installation | Device Installation Restrictions</strong></p>
<p>In the right pane double click &#8220;Prevent installation of devices not described by other policy&#8221;</p>
<p><a href="https://www.wincert.net/wp-content/uploads/2018/03/gpo_prevent_3.png"><img class="alignnone wp-image-2494 size-full" title="drivers" src="https://www.wincert.net/wp-content/uploads/2018/03/gpo_prevent_3.png" alt="drivers" width="1317" height="256" /></a></p>
<p>Set the policy to <strong>Enabled</strong>.</p>
<p>If you have only a small number of machines and you are not using a domain environment, you can do this locally on each of the Windows 10 client machines.</p>
<p>For this policy, there is no need for custom Windows 10 Administrative Templates.</p>
<p>Any comments are welcome.</p>

How to prevent Windows 10 from automatically downloading drivers
