Few months ago,I posted a blog on How to get list of missing/Required software updates for specific computer .This report basically helps to identify if the PC missing any patches to confirm the device is fully compliant or not. But this report is based on all the software updates available in the SCCM and whether they are part of any software update group or not.
Since the report is pulling the data from all the updates in SCCM, there is huge demand from my blog readers to help getting similar report but limit the report to specific software update group. So that, it will be easier to identify the list of missing patches for specific client from specific software update group.
This is a valid question and not every organisation deploy all the patches that are available in SCCM. As per organisation security standards, you can decide to deploy only security and critical updates hence you create a SUG group only for this.
I have made some changes to the previous report and added some filters to select the software update group.
A report RDL file is uploaded to Technet Gallery here, upload the report to your Configmgr SSRS Reports,change the data source and run it.
Report looks like this:
Hope you find this report useful.
5 Comments
Hi Eswar
I have used this report and a like it wery much 🙂
But now a have discovered that the dedaline is not correct or displayed from another deployment
For example KB4132216 are in 4 different deployment whit different dedlines.
So if a run the report "List Missing patches for Specific client for specific UG" and choose UG
"All OS Critical and Security Manual Deployments 2018-08-14 22:45:09" and a collection whit manual handeled servers
"SUM SRV - Windows Security & Critical Updates Manual Deployment"
and a choos a server Software Updates Missing on xxxxserver.
KB4134416 will display Aug14 10:32 as deadline but the deadline for the KB4132216 in SUG is 2018-09-22
Deadline is wery important for us, I want to be abel to send this report to different stakehoders that have servers
in manuall mode patching and warn them that patching is going to happen at this deadline.
Is this some thing you can correct in this report?
Hi,
Thanks for your feedback. Deadline is something that is not very accurate i believe ,i need to look at it further more or delete the deadline for now . Because if the update is part of SU group and is deployed multiple times to a collection then it wont show correct details. For now ,please ignore the deadline .I am running short of time due to office 365 project timelines ,may take time to look at it and update the reports.
Thanks,
Eswar
Hi Eswar,
When you drill down to the last linked report, it´s no filtering for the SUG select before, it display all missing patches for the selected server. Did I missed something or it's the expected behaviour? I'm on SCCM 1706.
Hi Alex,
I haven't looked the code in file but if you see this behavior happening for all the clients then i think you are right. The last report might be pulling the information about all info what is missing in the client irrespective of the software update group that you have filtered.
Regards,
Eswar
your the master in SCCM hatts off to you sir