I created an Auto Patch Deployment config to scan, download and deploy. But found that when the agent was installed on a new build , it would immediately start deploying patches and not just at the defined schedule time (DC Default Policy maybe ?) , which was not ideal when you are doing other setup\config work on the machine.
So I modified the config to just scan. But have found that patches are still being deployed to newly installed machines immediately after the agent is installed.
Is it best to delete the Auto Patch Deploy and recreate as scan only ? Or is something else going on