Automating Windows Update Status Scans

Fred Marshall
Fred Marshall used Ask the Experts™
I'm dealing with some 50 workstations of Windows 10 Pro in a peer-to-peer network.  The practice has been for the machines to be inspected manually on a weekly basis for update status.  It doesn't take too long really but it would be better no doubt to automate the process.

I've not found anything that really does the job.
Nessus doesn't seem to offer a template that does this particular scan.
PRTG may do it but I'm going to have to get the target machines to respond using the right security protocol.
MBSA seems to "work" but not very well for scanning Windows 10 machines - lots of loose ends.

Other than changing our ways, which isn't even part of this question, what might you suggest?
Our ambitions are quite limited - so you might keep that in mind.
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
SeanSystem Engineer

So these are not setup in a windows domain?
You could still use a WSUS server but you would need to set the WSUS settings manually in the registry to point the computers at the WSUS server.
You'll need to just have a windows server available and install the WSUS role. The PCs will check into this server and report their status and download all updates from that central server.


Yes, I think that peer-to-peer means "not in a windows domain" - but there may be nuances that I'm oblivious to.
And, that also means there will not be a windows server available.

I'm leaning toward GFI Languard now.
I didn't really try to get PRTG working so I don't have a good idea what the results might look like or the remediation steps, if any, are provided.  I rather doubt it.
I got Nessus running but didn't like the results in terms of integrating into remediations.  You can find the vulnerabilities, you can find which hosts they apply to manually, you can find some description of the remediations but no automated process for a single host + vulnerabilities.
We ended up installing GFI Languard.  The results are impressive re status of things.  Support, including the community forum, seems to be nonexistent.  Truly - *nonexistent*.  So that's a bit of a frustration in getting up to speed.


I'm rather amazed that there were no better answers or suggestions on EE!

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial