Hi All,
how to check particular windows update patch installed successfully ? status of the patch should be success not pending state.
Could someone help me with relevance. so far I have created this relevance but how to check whether patch currentstate is success.
not exists (string values of properties “HotFixID” of it) whose(it starts with “KB4012215”) of select objects “HotFixID from Win32_QuickFixEngineering” of wmis
Hi @Sreehari,
For KB4012215 64 bit, use:
exists key "Package_for_RollupFix~31bf3856ad364e35~amd64~~7601.23710.1.2" whose (value "CurrentState" of it as string as integer = 112) of key "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Component Based Servicing\Packages" of native registry
The “CurrentState” value will be 0x60 when it’s installed and pending restart, and 0x70 (112 above) when it’s fully installed.
For the key name “Package_for_RollupFix” and the version number, please refer to the relevance of respective Fixlet from Patches for Windows site.
Thank you so much for your reply. I tried in win7 and I got false but patch installed and state is success.
anyway I managed to create relevance. hope this will help someone.
(exists descriptions of records whose (event id of it = 2 AND description of it contains “KB4012215 was successfully changed to the Installed state”) of event log “Setup” ) or (exists descriptions of records whose (event id of it = 2 AND description of it contains “KB4012212 was successfully changed to the Installed state”) of event log “Setup” ) or (exists descriptions of records whose (event id of it = 2 AND description of it contains “KB4012214 was successfully changed to the Installed state”) of event log “Setup” ) or (exists descriptions of records whose (event id of it = 2 AND description of it contains “KB4012217 was successfully changed to the Installed state”) of event log “Setup”) or (exists descriptions of records whose (event id of it = 2 AND description of it contains “KB4012213 was successfully changed to the Installed state”) of event log “Setup” ) or (exists descriptions of records whose (event id of it = 2 AND description of it contains “KB4012216 was successfully changed to the Installed state”) of event log “Setup”)
Hi there. Where and how and why do you know to use this? Package_for_RollupFix~31bf3856ad364e35~amd64~~7601.23710.1.2
As written. How Do i know thwat are the last digits? How do you know what are the last digits? The 7601.23710.1.2
Why Can i just use standard “USE JUST THE KB TO VERIFY”? All Kbs?
Iow why do i need all this additional information to find a KB I am looking in relevance?
You…just have to know. They are documented in the KB articles for each package.
Each rollup package actually brings the OS up to a new version. ‘7601.23710.1.2’ refers to the version which the package provides.
It might be more difficult to query just for KB numbers directly, because you can become current just by applying the latest rollup package - you don’t have to apply previous month rollup packages.
Hi Jason,
Thanks for your reply. Dumb question. What about the prior updates from Monthly security? They arent labeled as rollups. Those are the ones I need to verify. Are they also in the rollups? Do these need to be applied? I am in an environment where are months behind and I have been tasked with upgrading them. to the last versions.
Thank you kindly
Not a problem. Most, but not all, of the old KBs were included in the rollup packages, but it varies by OS and by KB.
I think the BigFix content team has been doing a good job of tracking that, using the MS Update Catalog as their data source.
Fixlets for KB updates that were included in the monthly rollups were marked as Superseded, so if you see any older, still-relevant, Security update fixlets that are not marked as Superseded then you should plan on deploying them.