/bundles/itninjaweb/img/Breadcrumb_cap_w.png

Hello All.


I am trying to build a report to list all the installed Windows updates on all client machines. I am looking to report which clients are not up to date with installed Windows Updates.

Windows updates are installed via WSUS and not KACE.

Any help will be appreciated.

0 Comments   [ - ] Hide Comments

Comments

Please log in to comment

Answer this question or Comment on this question for clarity

Answers

0
EDIT: This answer is incomplete, please see the discussion below

SELECT M.NAME AS COMPUTER_NAME, PP.TITLE AS PATCH_NAME, DATE_FORMAT(PP.RELEASEDATE, '%Y-%m-%d') AS RELEASED
FROM PATCHLINK_MACHINE_STATUS MS
  JOIN KBSYS.PATCHLINK_PATCH PP ON PP.UID = MS.PATCHUID
  JOIN PATCHLINK_PATCH_STATUS PPS ON PPS.PATCHUID = PP.UID
  JOIN MACHINE M ON M.ID = MS.MACHINE_ID
WHERE PP.IS_APP = '0'
  AND MS.STATUS = 'NOTPATCHED'
  AND PPS.STATUS = 0
  AND PP.VENDOR = 'Microsoft Corp.'
ORDER BY M.NAME, PP.RELEASEDATE, PP.TITLE
Answered 01/09/2018 by: JasonEgg
Red Belt

  • Hello JasonEgg,

    I have already seen and tried that query, unfortunately it provides no list of PCs or updates. I believe because the query uses the KACE patching whereas we have it setup through WSUS.
    • my mistake, let me see if I can throw something together. Unfortunately, it is usually very hard to get patching info to interact with software info, which is what we need to do in this case.
    • After looking at it for a bit, I think the best strategy is to use a "detect only" patch schedule which looks for Windows patches. Then you can use the query above.
Please log in to comment
Admin Script Editor
Admin Script Editor is an integrated scripting environment available free here at ITNinja

Share