(imported topic written by cstoneba)
I am currently in the process of designing, and implementing, a process to push both monthly patches to our clients, and get new servers builds up to date. In the past, I have just created a baseline for each month of MS patches and then pushed them accordingly. However, I’m just trying to find a more efficient way to do it. As we all know, baselines actually duplicate the fixlets that’s in the baseline. This requires that the baseline be synched periodically, but the big thing I don’t like is that now clients have to report back on both the original fixlet AND the baseline (double the work).
My workaround was going to be putting monthly baselines in a custom site, but then I am duplicating the fixlets myself, and that’s not any better. Plus you have to deal with custom site subscription and that is just one more task.
What I am asking is, is there some sort of mechanism (wizard, task, client API, etc) that you could push all Microsoft critical security updates that were released between 6/1/10-6/30/10 at once?
Sorry for the rant and I’m sure it has been asked before, but I’m just trying to do something that makes more sense.