How to Uninstall Adobe Flash Player from Windows 10 with ConfigMgr

Update 22/01/21

I have now modified the script to include support for Windows Servers. In this tutorial, when prompted to download the updates from the Microsoft Update Catalog for “Windows 10”, also include updates for the server versions you plan to deploy the update to.

Adobe Flash Player has been around, drilling security holes in your network, for 20 years. Back in 2017 Microsoft and Adobe announced Adobe Flash Player will no longer be supported after December 2020. Adobe will start to actively block content from running in Flash Player beginning 12th January 2021. Customers who have deployed Adobe Flash Player Plugins, outside of the version included with Windows 10, will need to consider how they remove it across their organisations. There will also need to be consideration for those who have deployed the NPAPI and PPAPI plugins for Windows 10.

Which Adobe Flash Player Plugins need Removing

Flash Player shipped with Windows 10

Microsoft released an update on the Microsoft Update Catalog back in October 2020 called Update for Removal of Adobe Flash Player (KB4577586) that permanently removes Adobe Flash Player as a component of the Windows OS for Microsoft Edge (Legacy) and Internet Explorer. This update can be downloaded manually from the catalog but will also be made available via WSUS early in 2021 as Optional.

Search for Update for Removal of Adobe Flash Player for Windows 10 Version to find the update for ALL Windows 10 versions.

A few months later this update will classified as Recommended. This update cannot be removed once it has been deployed. Starting around Summer 2021 all API’s, GPO’s and other mechanisms that control the behaviour of Adobe Flash player will be removed. The update will then be included as part of the Cumulative Update and Monthly Rollup from that point on. Yes – unless you stop installing Windows Updates Adobe Flash Player is going whether you like it or not. During the transition to automatic removal, Microsoft will continue to provide security updates for Adobe Flash Player.

You can find more information here: –

Note: Flash Player will be disabled/removed from Microsoft Edge (Chromium) as part of the Chromium Roadmap. Currently touted for Chrome release 88+—Jan-2021-

Edge Chromium is still enabled in 87+ at the time of writing this post.

NPAPI (Firefox) and PPAPI (Chrome) plugins for Windows 10 devices

To support Flash content on Mozella Firefox and Google Chrome admins would have been deploying the PPAPI or NPAPI plugins, or both. Adobe have released a universal uninstaller for these products to simplify uninstallation for all versions of the plugins. The uninstaller works for both 32 and 64bit versions of the Plugin.

You can find more information here: –

Note: If you have deployed Flash Player BETA, you will need to deploy the corresponding Flash Player BETA uninstaller which is available from Adobe Labs


In this post, we will focus on deploying the Microsoft Update that removes Adobe Flash Player support for Microsoft Edge and Internet Explorer on Windows 10 using ConfigMgr / MEMCM

Uninstalling Flash Player for Microsoft Edge / Internet Explorer on Windows 10 with ConfigMgr / MEMCM

The chances are that by the time you are reading this post Microsoft will have published the optional update to your WSUS catalog. Ignore the rest of this post and go and drink tea..or take a peek anyway.

Importing Updates into WSUS on Server 2016 has its challenges so I will deploy the update as an Application in ConfigMgr. Because there is a unique update for each Windows 10 version I have decided to roll all the updates into a single application and use PowerShell to handle the installation. This way we have a single script that can handle all Windows 10 versions. Better than creating an application for each OS version right?

The scripts are pretty simple. Please test them before using them in production. This update cannot be removed once installed which limits how much testing I could do in my lab.

One script installs the update dependant on the OS architecture and ReleaseID and the other is used as the application detection method.


1.2.1 – 22/01/2021
Added support for Server OS – Thanks @Hoorge for the suggestion

1.2 – 04/01/2021
Fixed 20H2 coding error – Credit @AndyUpperton

1.1 02/01/2021
Basic Transcript Logging added


Before we start building our ConfigMgr application, we must first download all the Windows 10 versions of the KB4577586 update from the Microsoft Catalog. I download mine from the WSUS console link because it creates nicely formatted folders that we can use later on for our application content folder structure.

1 . Open your WSUS Console
2 . Expand your WSUS Server Node and select Updates from the Navigation pane
3 . Select Action > Import Updates from the Actions menu

4 . A browser window will open, search the Catalog for Update for Removal of Adobe Flash Player for Windows 10
5 . Add “ALL” the updates to your basket *. There are 24 in total – the removal tool for Windows 10 20H1 can be used to remove Flash from Windows 10 20H2

* The Add button is only available when browsing the catalog from Internet Explorer. I will not be importing these updates directly into the Catalog because of various known challenges with WSUS on Server 2016

6 . Select View Basket > Download

7 . Choose a folder to download the updates to

Your files will download into a similar folder structure as below. Place this folder onto a UNC that you normally stage application content from when building applications in ConfigMgr

8 . Download the following PowerShell Scripts to the same folder as above


Your content staging folder should now look like this

9 . Create a new Application in ConfigMgr. From the ConfigMgr Console, navigate to Software Library > Overview > Application management > Applications and select Create Application from the ribbon

10 . Select Manually specify the application information and click Next

11 . Enter the following information and then select Next: –

Name: Update for Removal of Adobe Flash Player for Windows 10
Publisher: Microsoft

12 . Customize the Software Center entry and click Next

13 . Click Add to add a deployment type
14 . Choose Manually specify the deployment type information and click Next

15 . Enter a Name for the deployment type and click Next
16 . Enter the following information and click Next: –

Content Location: Same UNC path you specified for your staging content in Step 8
Installation Program: PowerShell.exe -ExecutionPolicy Bypass -File “Install_Flash_Removal_KB4577586.ps1”

17 . Select Use a custom script to detect the presence of this deployment type in the deployment detection wizard and click Edit

18 . For Script type choose PowerShell, paste the content of Detect_Flash_Removal_KB4577586.ps1 and click OK

19 . Click Next
20 . For installation behaviour, choose the following and click Next: –

Installation behaviour: Install for system
Logon requirement: Whether or not a user is logged on
Installation program visibility: Hidden
Maximum Allowed run time: 15 minutes
Estimated installation time: 2 minutes

21 . in the Requirement Type dialogue box, add a requirement for Operating System = Windows 10 and click Next

22 . Click Next twice (skipping software dependencies)
23 . Click Close
24 . Click Next twice, review the wizard summary and click Close
25 . Deploy the application as Required to your Windows 10 device collection that is in scope for Adobe Flash removal.

Review the deployment to ensure the application is installing which means Adobe Flash Player for Windows 10 (Edge and Internet Explorer) is being uninstalled

appenforce.log on the client

Before and after the application was deployed

Review basic Transcript log in the %TEMP% Directory on the client

Deployment Status for application deployment

Application Deployed to different Windows 10 Versions and ran successfully


In this post we reviewed the upcoming changes and end of support for Adobe Flash Player. We used ConfigMgr to deploy an update from the Microsoft Catalog which removes Adobe Flash Player support from Windows 10 for Microsoft Edge and Internet Explorer.

We briefly touched on the PPAPI and NPAPI plugins which Adobe has a removal tool for.

With any luck, by the time you read this post KB 4577568 will be released to WSUS which will make deployment of the update much simpler.

Rate this post

3 thoughts on “How to Uninstall Adobe Flash Player from Windows 10 with ConfigMgr”

  1. Nicely written ps script. Just a note, the KB released by MS only prevents flash from operating. It does not remove the flash client, you’ll need to script up another script or incorporate it to remove the flash client itself.

Leave a Comment

Your email address will not be published. Required fields are marked *

Time limit is exhausted. Please reload CAPTCHA.


This site uses Akismet to reduce spam. Learn how your comment data is processed.