Hi,
We got in our environment a number of Policy actions “Open Ended” to fix certain issues and as part of clean-up effort would like to have report that would show for each policy action last time it has run on a client so that way if we create Policy action a year ago and last time it run was 3 months ago we can safely assume it’s not needed anymore.
Would like to create this a scheduled web report so that the operator who created the policy action can also go ahead and stop/delete the action if not needed anymore.
I’ve got below session relevance that returns data for specific action and last end time is has run for each computer, what I would like to see if actionID, ActionName, lasttime it has run simple as that
(id of item 0 of it, name of item 0 of it, maximum of (end time of item 1 of it)) of (it, results of it) of bes actions whose (id of it = 5219212)
Output
5219212, PC1-POLICY - JOB - Push Job for App1, ( Mon, 18 Nov 2024 16:09:31 +0000 )
5219212, PC1-POLICY - JOB - Push Job for App1, ( Mon, 18 Nov 2024 14:30:09 +0000 )
5219212, PC1-POLICY - JOB - Push Job for App1, ( Mon, 18 Nov 2024 13:35:53 +0000 )
5219212, PC1-POLICY - JOB - Push Job for App1, ( Mon, 18 Nov 2024 13:43:53 +0000 )
5219212, PC1-POLICY - JOB - Push Job for App1, ( Tue, 19 Nov 2024 11:58:23 +0000 )
Output I would like to have is
5219212, PC1-POLICY - JOB - Push Job for App1, ( Tue, 19 Nov 2024 11:58:23 +0000 )
Session relevance will be updated to only report back on actions that have “policy” in the name ideally would get list of actions and corresponding ids and last report times
I need to do some grouping that’s how I would do it in SQL
any advice/help would be appreciated