Create "Missing Updates" overview and detail report to help us patch all the things with all the patches
I'd love to see two new reports added to help systems managers ensure they patch all the things with all the patches.
The overview report should be filterable by Collection and include Client Name, Last Scan Time, Total Missing Updates, and then totals for each Update Classification.
The detail report should have the same filters as Compliance 5 except it should NOT have the Update Class field (If you add that, people will still just deploy only some updates, which is not the point of this report). The columns should be the same data as Compliance 5, but only return rows that are "Required".
These reports will help organizations create scorecards for systems and areas of their business.
Nash Pherson (MVP)
shared this idea
2 comments
-
Gary
commented
Check out https://blogs.technet.microsoft.com/gary_simmons_mcs/. It may be what you are looking for.
But I agree, this should be native to the product.
-
Nash Pherson (MVP)
commented
There are many examples of the overview reports like this (Ask Garth for one).
For the detail report, there is one in the Vulnerability Assessment Overall report that is an ok start, but look at what Kevin did to it here: https://ccmcache.wordpress.com/2016/05/04/sql-query-ssrs-report-for-missing-software-updates-from-the-vulnerability-assessment-report-in-kb3153628/
Remember, the goal of this is to present data that does not perpetuate the "only security and critical updates" misguided disaster patch strategies.