I need an overview report that shows the overall patching status of our environment that can be submitted to our CIO. We are using the K1000 for patching and are an all Dell Shop. Our current environment is Windows 7 only.
1 Comment   [ + ] Show Comment

Comments

  • What product are you using? Can you add some relevant tags to your post please?
Please log in to comment

Answers

1
Here is one that will show you the completion of a specific Patch Job per computer.

select M.NAME as NAME, M.IP as IP_ADDRESS, KT.PHASE as STATUS, Concat('Patched: ', PS.PATCHED,' , ','Not Patched: ',  PS.NOTPATCHED,' , ','Detect Failures: ',  PS.DETECT_FAILURES) as PATCH_RESULTS, PS.LAST_RUN as DATE 
from MACHINE M
left join PATCHLINK_SCHEDULE_MACHINE_STATUS PS on PS.MACHINE_ID = M.ID
left join PATCHLINK_SCHEDULE PSS on PSS.ID = PS.PATCHLINK_SCHEDULE_ID
left join KBSYS.KONDUCTOR_TASK KT on KT.KUID = M.KUID
where PSS.DESCRIPTION = 'PATCH JOB NAME'
and KT.TYPE = PSS.KONDUCTOR_TASK_TYPE


Here's one that will show you patches installed in the last day (you can make it last week, month, minute, etc...)

select M.NAME as COMPUTER_NAME, PP.TITLE as PATCH_NAME, PP.IMPACTID as PATCH_IMPACT, MS.DEPLOY_STATUS as PATCH_STATUS, MS.DEPLOY_STATUS_DT as INSTALL_DATE from MACHINE M
left join PATCHLINK_MACHINE_STATUS MS on MS.MACHINE_ID = M.ID
left join KBSYS.PATCHLINK_PATCH PP on PP.UID = MS.PATCHUID
where MS.DEPLOY_STATUS_DT > subdate(now(), interval 1 day)
ORDER BY M.NAME, PP.TITLE
Answered 02/24/2015 by: h2opolo25
Red Belt

  • What does "Patch Job Name" refer to?
    • The name you gave to your patch schedule. If you go to Security >> Patch Management >> Patch Schedules and look at the Name column, just enter one of those in the query.
Please log in to comment
Answer this question or Comment on this question for clarity
Nine Simple (but Critical) Tips for Effective Patch Management
This paper reviews nine simple tips that can make patch management simpler, more effective and less expensive.

Share