Groups of computers in a Hierarchy are not patching as expected during patch cycles
Article ID: 194994
Updated On:
Products
Patch Management Solution
IT Management Suite
Issue/Introduction
Groups of computers had not been patched as expected during patch cycles. In reviewing the compliance reports for a sample computer, it did not show expected updates as not installed or applicable. In reviewing the default patch targets, it was found that the default primary target, Windows Computers with Software Update Plug-in Installed Target, was not in place for the Windows Patch Remediation Settings policy on the Parent NS (and all children).
Environment
ITMS 8.x
PM 8.x
Cause
It was the target name that had single quotes around it and this could not be corrected by selecting the default target.
Resolution
This was resolved by:
- Corrected the target issue by exporting the policy, editing the ItemReference lines, and adding the correct target GUID.
- Verified that it was owned by the Application Identity.
- Identified that on a Child NS, multiple targets were also listed for the policy indicating a replication issue.
- Manually corrected this on the children and then were able to delete the extra targets. This allowed some clients to then show expected updates in compliance reports and to show updates where update distribution policies existed.
- Further troubleshot computers still not patching and found the scan working successfully but the data was not updating as seen in the compliance reports or the patch data classes.
- By forcing a full assessment scan by configuring the option in the Windows System Assessment Scan policy, compliance data was successfully updated and all systems were successfully patched as expected.
- Then was able to set the Windows System Assessment Scan policy to send only changes.
Feedback
Yes
No
Powered by
