Hi,
The action shows completed with exit code None,but patches are not applied.
Thanks,
Which patches were you trying to install exactly? The two in the screenshot above are older cumulative update patches from 2019 that have been superseded (note the â(Superseded)â at the end of the Fixlet title above).
Hi,
We are applying only Jan ,Feb cumulative updates.We have successfully applied on 15 servers.only 1 server we got the issue.Action shows completed but it was not applied on the endpoint.
Thanks,
To be clear, the Jan, Feb cumulative updates in the screenshot above are from 2019âŚare those the ones you were trying to deploy?
Do you have _BESClient_WindowsOS_EnableSupersededEval set to â1â on this device? (see https://help.hcltechsw.com/bigfix/10.0/compliance/Compliance/SCA_Users_Guide/c_supersededeval.html and âEnable Superseded Patch Evaluationâ good or bad idea? for reference) If not, consider sending this Client a refresh as it shouldnât be showing relevant for these 2 superseded Fixlets.
Yes ,we are trying to deploy those Jan,feb Patches.we have already enabled _BESClient_WindowsOS_EnableSupersededEval set to â1â .We logged in to the server and checked patches were not applied.
Thanks,
It would be useful to see the client log from one of the machines that applied the action, as well as to know whether you have rebooted the server after the action completed.
1 Like
Ah, seems I made a mistake above (my apologies)âŚthese are superseded patches, but not from 2019 (they apply to Server 2019). In any case, with SupersededEval set to 1, weâd expect them to be relevant as needed, and deployable. What does the baselineâs/Multiple action groupâs action result show?
In the logs also it shows completed. We have rebooted the server after patching.
Thatâs not enough - can you paste the log snippet?
That shows the client re-evaluating the content to âFixedâ after it ran - how about the part of the log that shows the patch execution starting, completing, the exit codes?
Also check the Windows Event Logs for around that time to show the wusa patch install, failure, or rollback operations.
we troubleshooted and fixed the issue, but the action shows completed in the bigfix console and why didnât applied the patches on endpoint ?
Can you please suggest us
No, I canât. Without seeing your logs, Event Viewer, or any other data point, I canât really say more than âsomething went wrongâ. I also canât tell whether thatâs a problem with Windows or with how you sent the action.
I would recommend finding the lines in the client logs that show the action running (search on the action ID) and see what exit code was given. Typically its something like 3010 indicating a soft reboot is needed. A pending restart would make the fixlet be deemed as âFixedâ until the restart has occurred.
If the system is missing a recent SSU then that patch may fail to install. As @JasonWalker suggests, you need to also check the Windows event logs as the underlying installation is done by the Windows Update Agent and any issues or CBS corruption that impeded the file rename operations that occur after the reboot could trigger a rollback which then makes the fixlet applicable again.
Incidentally, you only need to apply the most recent CU, so the Feb one in your case. Trying to install both Jan and Feb CU is wasted cycles.