Altiris NS - Microsoft Security Bulletin MS08-052 (KB954478)
Posted on 2009-07-04
Hi guys, First question from an altiris newbie.
Guys,we are using NS 6.2 with Patch Management, and having a big problem with Office 2003 patches.
Altiris NS Server reports that most our workstations are vulnerable, but the patch is actually installed on them.
Bulletin/Patch in question:
The patch exe is as follows:
What we have done:
The patch was released over a month ago, and if we remote on locally to the workstations, and go to Add/Remove programs, we see an entry in there for the patch: Security Update for Office 2003 (KB954478)
Looking at the Altiris Agent, we find that the patch is continually trying to download and we dont know why.
If we go into the Reports section of the NS server, most systems are reporting that they are vulnerable with respect to this patch, even though they have the patch installed.
The machines have been rebooted since the patch was deployed.
Ive used the remote altiris agent diagnositcs tool.
Ive tried to run an update inventory using the agent, but the reporting ns server is not updating.
Inventory collection is set at an interval every 6 hours.
Because my knowledge of altiris is really limited, im stumped and would love your guys seasoned expertise.
I spose the concern here is how do we get the ns server to report that systems that have actually been patched, dont show as vulnerable when doing the report on the ns server.
Q: How can you force an inventory update, including entries seen in Add/Remove programs, from the client? How and where then do you check on the ns server that this machine will show the patch has been installed?
We have over 3000 machines reporting that this patch has not been installed, when in reality, it is.
Any help greatly appreciated.