Issue:
How can we retrieve a list of missing updates per hosts for Software Updater (SWUP)? The Policy Manager Web Reporting tool has a "MISSING UPDATES" report. This report lists how many computers have missing software updates but not the names of these computers.
Resolution:
As a workaround, the following SQL query can be used to list the missing updates including the computer/server hostnames. To activate the setting, consult the "Policy Manager Advanced configurations settings" -page
- https://community.f-secure.com/discussion/11869/policy-manager-advanced-configuration-settings
The setting to activate is -Dh2ConsoleEnabled=true. To start the H2 console, open the URL https://localhost:8080 on the Policy Manager Server and click the link visible in the screenshot below.
The SQL query to find missing updates on all hosts is below.
select display_name,
case when severity = 1 then 'critical'
when severity = 2 then 'important'
when severity = 3 then 'unclassified'
when severity = 4 then 'moderate'
when severity = 5 then 'low'
else 'unspecified' end severity,
case when category = 0 then 'security update'
when category = 1 then 'non security update'
when category = 2 then 'service pack'
when category = 3 then 'security tool'
else 'unspecified' end category,
bulletin_id, product_name, vendor_name, update_name, cve_id, kb, description_url from missing_software_updates
join host_properties on computer_id = domain_id
join software_updates on id = software_update_id;
Article no: 000023074