Windows Update History Audit
Purpose
The purpose of this document is to gather and present data about Windows Updates that have been installed on an endpoint.
Associated Content
| Content | Type | Function |
|---|---|---|
| EPM - Data Collection - Get-WindowsUpdateReport | Agnostic | Gathers the Windows Update data that the CWA script manipulates. |
| EPM - Script - Windows Update History Audit | Script | Calls Get-WindowsUpdateReport and manipulates the data for insertion into pvl_windows_updates. |
| EPM - Custom Table - pvl_windows_updates | Custom Table | Stores information about Windows Update history for agents. |
| EPM - Dataview - Windows Update History | Dataview | Displays information about Windows Update history for agents. |
| EPM - Internal Monitor - Patches Not Installing > X Days | Internal Monitor | Monitors that uses the pvl_windows_updates table for referencing installed updates. |
Implementation
The script Windows Update History Audit should be scheduled against all compliant Windows endpoints on a weekly basis.
If required, implement the Patches Not Installing > X Days monitor following the instructions in the documentation.