Patches Not Installing X Days
Summary
The purpose of this monitor set is to detect machines that do not have any cumulative or security patches installed in the past X days. It will not detect any end-of-life (EOL) machines and will only identify machines where the CWM - Automate - Script - Windows Update Report [DV] script has been executed at least once over the past 7 days.
Suggested Alert Template: ~Custom - Ticket Creation Computer
Alerting Tab:
- Subject: LT - Patches Not Installing > X Days on %computername%
Alert on Failure: The machine %computername% at %clientname%/%locationname% is currently reporting that it has not installed a recent cumulative update for over X days. Please investigate why this machine is not receiving patches. The last cumulative update for this machine was installed on %Result%.
%FieldName%
Alert on Success: The machine %Computername% is no longer reporting that it has failed the monitor %Name%. Closing ticket.
NOTES:
- Adjustments to the SQL must be made at
AgentID = 'TYPE YOUR MONITOR ID HERE'to make this functional.
- To overwrite the default threshold of 45 days, the following changes should be made:
- Change 45 in the
INTERVAL 45 DAYstatement at the bottom of the additional condition of the monitor set to the preferred number of days.
- In the Alerting tab, replace 45 with the desired threshold in days.
- Change 45 in the
Dependencies
- EPM - Solution - Windows Update History Audit
- SEC - Windows Patching - Custom Table - plugin_proval_windows_os_support
- CWM - Automate - Script - Ticket Creation - Computer
Target
SQL is limiting it to machines with a managed patching policy only.
Reference Table
- pvl_windows_updates
- plugin_proval_windows_os_support
- Computers
- Clients
- Locations
- Agentcomputerdata
- h_scripts
- AgentIgnore
- lt_scripts
- installsoftwarepolicies
- hotfixdata
- hotfix
- computerpatchpolicies