Patch Management Compliance report

Kanishkap · August 22, 2022, 7:37am

Hi All,

I’m having trouble using BigFix Web reports to retrieve a patch management compliance report.

As my business requests a reports similar to the below, we require that information for our security dashboards like basic patch management tool provide.

Reports /Dashboard

  01.Servers which is installed this month released patch (Identify the Servers)
 *   Servers which is not installed this month released patch
 *   Servers which is installed patch & pending reboot.

   02. How many servers under vulnerable state 
                 * How many servers under not vulnerable state.

   03. Pending Patches (30days old, 90days old, 180days old, etc…)  

   04. Overall compliance percentage

   05. Third Party Application vulnerability Report

   06. Need reports to find 
              * Specific CVE number base patched Servers.
              * Specific KB number base patched Servers

   07. Missing Critical Patches

Any suggestions on where or how to submit this type of report.

MatthiasW · August 22, 2022, 12:53pm

Hi,
those requirements are not a one liner or just some mouseclicks. If I understood it correct, you want to gather data from BigFix to get them into an external security dashboard?
If yes, getting the data through rest-api would be the prefered way in my opinion.

Kanishkap · August 23, 2022, 4:26am

Hi, Yes, I do require some crucial data from BigFix, such as the number of computers that have been patched, the number that have failed, and similar information, but sadly, the data is not available on the BigFix web report.