Windows SCCM patch level

Posted on 2012-09-04
Last Modified: 2012-09-07
I recently had SCCM implement.  I have found reports which let me see all Win 2008 R2 without patch, those with SP1 and those with SP2.  I wondered if there was a report within SCCM which would allow me to see at a more granular level the patching level of all my servers.  Which have received the latest patches less that a full blow SP and which have not.  ??  Thank you.
Question by:amigan_99
    LVL 17

    Assisted Solution

    LVL 29

    Assisted Solution

    by:Rich Weissler
    That sounds like Software Updates within SCCM.  You'll need to install a WSUS server tied to the SCCM instance.  It gives you a great deal of granularity, and it'll also enable a lot of the patch reporting within SCCM, but it takes a bit of effort to set up.
    LVL 60

    Assisted Solution

    LVL 38

    Expert Comment

    I was looking into a custom WMI query to show all software on a system. You can use a custom query created as a WMI script to get more granularity on what's on a system.

    But, there are also built in reports to see what computer has what software.

    There's also (within SCCM) the ability to create dashboards.

    All of this is a lot of playing around with the server to get it to do what you want. It's best to get a patching program that's built just for that reason of patching.

    If interested in any of the above ideas, ask for additional information.
    LVL 38

    Accepted Solution

    One other thing, you can initiate a software cycle inventory, or you can also initiate a software scan cycle to ensure the sytem is patched from the SCCM client side software or within SCC console on the system itself.
    LVL 1

    Author Closing Comment

    Thanks all.
    LVL 38

    Expert Comment

    Here is a WMI command to work with:


    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Top 6 Sources for Identifying Threat Actor TTPs

    Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

    Redirected folders in a windows domain can be quite useful for a number of reasons, one of them being that with redirected application data, you can give users more seamless experience when logging into different workstations.  For example, if a use…
    A common practice in small networks is making file sharing easy which works extremely well when intra-network security is not an issue. In essence, everyone, that is "Everyone", is given access to all of the shared files - often the entire C: drive …
    This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
    This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now