Microsoft Security Updates not showing relevant

Hello Guys,

I have an end point that ha snot been patched since 2014 but when I check it in BigFix, it does not show any update from 2015 onwards.

Is there some setting that needs to be enabled to resolve this ?

Thanks

What OS is the endpoint running?
Is it subscribed to the Patches for Windows site?

Hey Tim,

So the server is a Windows Server 2008 R2 machine and it is assigned to Patches for Windows Site.

So far I have tried clearing the console and client cache but have had no luck with it. Another forum post suggested to change the Site relevance and then undo the changes which will resolve the issue but i am skeptical to try that approach.

The server was running an older version of the client which I was able to successfully update using the client update fixlet but the machine is still not reporting any relevant patches.

Thanks

Are you seeing anything related in the Client Logs at \Program Files (x86)\BigFix Enterprise\BES Client\__BESData\__Global\Logs

Hey Jason - No I don’t see anything in the client logs regarding the Windows Updates fixlets.

Have you tried reinstalling the bigfiix agent?

Is it possible to unsubscribe and resubscribe that particular computer from the Patches for Windows site ? If so you could try that.

Hi Gearoid - I have already tried both re-installing the BES client and resubscribing the computer from Patches for Windows Site but unfortunate both have not worked.

Would removing the machine from the database have any affect on the Relevant fixlets and tasks when the machine registers back in BigFix ?

Thanks

You should be seeing information here when you agent is subscribing to sites, and what sites it subscribes to. If you’re not then you should probably raise a PMR.