/bundles/itninjaweb/img/Breadcrumb_cap_w.png

Hello All.


I am trying to build a report to list all the installed Windows updates on all client machines. I am looking to report which clients are not up to date with installed Windows Updates.

Windows updates are installed via WSUS and not KACE.

Any help will be appreciated.

0 Comments   [ - ] Hide Comments

Comments

Please log in to comment

Answer this question or Comment on this question for clarity

Answers

0
EDIT: This answer is incomplete, please see the discussion below

SELECT M.NAME AS COMPUTER_NAME, PP.TITLE AS PATCH_NAME, DATE_FORMAT(PP.RELEASEDATE, '%Y-%m-%d') AS RELEASED
FROM PATCHLINK_MACHINE_STATUS MS
  JOIN KBSYS.PATCHLINK_PATCH PP ON PP.UID = MS.PATCHUID
  JOIN PATCHLINK_PATCH_STATUS PPS ON PPS.PATCHUID = PP.UID
  JOIN MACHINE M ON M.ID = MS.MACHINE_ID
WHERE PP.IS_APP = '0'
  AND MS.STATUS = 'NOTPATCHED'
  AND PPS.STATUS = 0
  AND PP.VENDOR = 'Microsoft Corp.'
ORDER BY M.NAME, PP.RELEASEDATE, PP.TITLE
Answered 01/09/2018 by: JasonEgg
Red Belt

  • Hello JasonEgg,

    I have already seen and tried that query, unfortunately it provides no list of PCs or updates. I believe because the query uses the KACE patching whereas we have it setup through WSUS.
    • my mistake, let me see if I can throw something together. Unfortunately, it is usually very hard to get patching info to interact with software info, which is what we need to do in this case.
    • After looking at it for a bit, I think the best strategy is to use a "detect only" patch schedule which looks for Windows patches. Then you can use the query above.
Please log in to comment