Patching - Machines Missing 5+ Patches

Summary

This monitor will look for any machines (excluding EOL) that are patching via CW Automate and are missing five or more patches that are at least 21 days old.

This monitor is designed to work with the '~Custom - Ticket Creation - Computer' Alert Template (CWM - Automate - Script - Ticket Creation - Computer).

NOTE: The number of missing patches is adjustable to any threshold required. This monitor may become very noisy during patch approval and denial, so you can schedule it to run around the patching schedule.

Dependencies

CW Automate must have the "new" patch manager enabled. This data uses the ComputerPatchComplianceStats table, which is a calculated metrics table. This process typically runs once per day, so the data may need to be updated before the monitor will display accurate information.

To force update this table:

From the Control Center window, click on "Help" and then "Server Status". This will open up the server status menu. In the server status menu, there are several available buttons along the bottom of the window.

Click the option for "Do Patch Report Calculations" - this command will tell Automate to run the stored procedure to update the patching metrics. This process may take a few minutes to update the required tables.

SEC - Windows Patching - Custom Table - plugin_proval_windows_os_support

Target

Windows Machines - This monitor should be run on all Windows machines that patch via CW Automate.

Summary​

Dependencies​

Target​

Summary

Dependencies

Target