Patch Management Group

 View Only
Expand all | Collapse all

Patch - Import updated, can I see which updates are new?

  • 1.  Patch - Import updated, can I see which updates are new?

    Trusted Advisor
    Posted Dec 14, 2012 08:20 AM

    I turned on an automation policy to email me when PMImport downloads changes, which is nice info to have pushed to me.

    I see there were PMImport changes last night, and if I look at the Import Patch Data task history for last night, I got 3 new bulletins, 22 new updates.

    When I go to remediation center - all software updates - and sort by date I can figure out what one of those updates was (Chrome) but can't figure out the others.  I've seen sometimes when a bulletin comes out, the release date was old by a month or so (it was an update I was waiting for for awhile and was working with support on it).

    I do run win update and see what my machines are vulnerable for and search all updates for those KBs - but none are available yet.

    Is there any easy way to see what bulletins/updates were released last night besides what I'm already doing, or should I put this in as an idea?

    Thanks!



  • 2.  RE: Patch - Import updated, can I see which updates are new?
    Best Answer

    Posted Dec 14, 2012 01:45 PM

    An "Idea" sounds like the best option as I don't see a report for viewing that information.  Perhaps you could use this SQL to create a new report?  It will list out the bulletin name, update name, and Status (added/modified).

    SELECT bi.Name, sui.Name, stat.[Status]
    FROM ItemStatusAfterPMImport stat
    JOIN vRM_Patch_Software_Update_Item sui
      
    ON stat.ItemGuid = sui.Guid
    JOIN ResourceAssociation ra
      
    ON ra.ChildResourceGuid = sui.Guid
      
    AND ra.ResourceAssociationTypeGuid = '7EEAB03A-839C-458D-9AF2-55DB6B173293'
    JOIN vRM_Software_Bulletin_Item bi
      
    ON bi.Guid = ra.ParentResourceGuid
    ORDER BY bi.Name, sui.Name



  • 3.  RE: Patch - Import updated, can I see which updates are new?

    Trusted Advisor
    Posted Dec 14, 2012 02:15 PM

    Thanks, that report seems to have what I need.  I wish I had your understanding of the tables and SQL.  I put in an idea too.

    https://www-secure.symantec.com/connect/ideas/patch-import-updated-let-us-see-which-updates-are-new#comment-8090671



  • 4.  RE: Patch - Import updated, can I see which updates are new?

    Posted Dec 17, 2012 01:46 AM

    Hello Sally.

    Also you can use PMImport automation policy with custom property. The default property value in this policy used as 'the latest SW updates published 1 day before'. You should change this value(for example 14 days=2 weeks).

    Also required configure Notification server E-Mail settings to receive notification report by e-mail.

    Good luck.



  • 5.  RE: Patch - Import updated, can I see which updates are new?

    Trusted Advisor
    Posted Dec 17, 2012 07:50 AM

    @Sergey - how does that help me see which updates were released?  That policy just says emails an saying an update was released, right?



  • 6.  RE: Patch - Import updated, can I see which updates are new?

    Posted Dec 17, 2012 08:00 AM

    Yes,

    this report will show a difference between PM Import scheduled tasks with SW Updates released at last 2 weeks.

     



  • 7.  RE: Patch - Import updated, can I see which updates are new?

    Trusted Advisor
    Posted Dec 17, 2012 08:13 AM

    The automation policy I'm talking about is "New Software Bulleting Available" - the default value appears to be in hours (24).  I changed that to 336 (2 weeks) and it sends a link to a report which I think has the info.  Still wish the email could just return the data versus a link (I often am viewing on a smartphone), but this is better than what I had before.  Thanks.

    Also. would be nice if this report had KBs versus bulletins - looking at win updates I'm always searching by KB for what's available in CMS - not by bulletin number.



  • 8.  RE: Patch - Import updated, can I see which updates are new?

    Posted Dec 17, 2012 09:10 AM

    I'm sorry but I mean an automation policy 'Item Status Changed After PMImport'.

    The report for this AP will provide only newly added KBs (or removed something).

     



  • 9.  RE: Patch - Import updated, can I see which updates are new?

    Trusted Advisor
    Posted Dec 17, 2012 09:17 AM

    I changed "Item Status Changed After PMImport"  to 336 hours - ran test but didn't get any output.  Strange as definitely some bulletins were superseded (or would that not show).  

    The 14 day new software bulletin avail policy did have output



  • 10.  RE: Patch - Import updated, can I see which updates are new?

    Posted Dec 17, 2012 09:23 AM

    The SQL simply selects from a table that is populated at the end of each PMImport.  It does not contain every update, just those that are new or have been modified by the most recent import.