Microsoft Patching Efficacy
Is anyone else running into issues when deploying MS Security Patches where the install date of the patches that were previously deployed/installed (mostly Office related patches) will update each month when you view them in Add/Remove Programs even though it is the same KB installed?
Also here is a powerBI query I am trying out for viewing patch status over last 2 months. Let me know if you have something more effective.
DATE_FORMAT(PP.RELEASEDATE, '%Y-%m-%d') AS RELEASED,
COUNT(*) AS TOTAL,
CAST(SUM(IF((MS.STATUS = 'PATCHED'), 1, 0)) AS Int) AS PATCHED,
CAST(SUM(IF((MS.STATUS = 'NOTPATCHED'), 1, 0)) AS Int) AS Missing,
CAST(SUM(IF((MS.DEPLOY_ATTEMPT_COUNT >= MS.MAX_DEPLOY_ATTEMPT
and MS.STATUS != 'PATCHED'
or MS.STATUS = 'FAIL'
or (MS.DEPLOY_STATUS = 'FAIL' and MS.STATUS != 'PATCHED')), 1, 0)) AS Int) AS ERROR
FROM PATCHLINK_MACHINE_STATUS MS
JOIN KBSYS.PATCHLINK_PATCH PP ON PP.UID = MS.PATCHUID
WHERE PP.RELEASEDATE >= DATE_SUB(CURDATE(),INTERVAL 60 DAY)
AND PP.IS_APP =0 and PP.IS_SUPERCEDED=0
GROUP BY PP.UID
ORDER BY 1 DESC, 5 DESC
There are no answers at this time