cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
AZHockeyNut
Champion Sweeper III
the report, as posted to your page shows assets that are marked with status other than active...such as destroyed, in-active etc. when one has a lot of assets in the report these should likely get filtered out so the active ones get priority in patching. could you show how to add that filter?
1 ACCEPTED SOLUTION
KevinA-REJIS
Champion Sweeper II
Ran into the same problem, found the parentheses in the Where statement were incorrect, here's my fixed code:

Where (tsysOS.OSname In ('Win 2008 R2', 'Win 2012', 'Win 2012 R2', 'Win 2016',
'Win 2019') Or (tsysOS.OScode Like '10.0.18362' Or
tsysOS.OScode Like '10.0.18363' Or tsysOS.OScode Like '10.0.19041')) And
tblAssetCustom.State = 1 And tsysAssetTypes.AssetTypename Like 'Windows%' And
tblComputersystem.Domainrole In (4, 5)

View solution in original post

5 REPLIES 5
hanslepire
Engaged Sweeper
This is needed to add 2020-10 updates otherwise, the report will be red :

2019
KB4577668

2016
KB4580346

2012 R2
KB4580347
KB4580358
Antikas
Engaged Sweeper
Found the exact same issue, mviel. Ran updates using KACE SMA which succeeding but Zerologon audit was showing systems out of date and vulnerable.

In my case, found KB4565349 has been superseded by KB4577069: -

https://www.catalog.update.microsoft.com/ScopedViewInline.aspx?updateid=1e857e5a-9432-4eaa-8c29-a755cc55f91d

I have updated our Lansweeper Zerologon audit report to include this update.

Thanks,
Anthony.
mviel
Engaged Sweeper
I have the Problem that on Windows 2019 Server the latest Patches are installed , but still the Report tells that there are missing KBs.

Did someone else had the Same Question .

If I google for KB4570333 its shows on Microsofts WebPage that the Updates was replaced bei KB4577069, that could Explain the Differece . ( PackageDetails )

https://www.catalog.update.microsoft.com/ScopedViewInline.aspx?updateid=0e3dc4b3-4757-43e3-a5d4-bf64c1856363

I would suggest to include KB4577069 with the Report so that false-positive are not shown .
brodiemac2
Champion Sweeper
I believe there is also a problem with servers that are domain controllers in this report. Mine are all patched but this report lists all of my domain controllers are vulnerable.
KevinA-REJIS
Champion Sweeper II
Ran into the same problem, found the parentheses in the Where statement were incorrect, here's my fixed code:

Where (tsysOS.OSname In ('Win 2008 R2', 'Win 2012', 'Win 2012 R2', 'Win 2016',
'Win 2019') Or (tsysOS.OScode Like '10.0.18362' Or
tsysOS.OScode Like '10.0.18363' Or tsysOS.OScode Like '10.0.19041')) And
tblAssetCustom.State = 1 And tsysAssetTypes.AssetTypename Like 'Windows%' And
tblComputersystem.Domainrole In (4, 5)