Report on fixed fixlets last 30 or 90 days per computer

Reporting
1

(imported topic written by SystemAdmin)

Patching often gets blamed for breaking something on our servers and I’m often asked “what patches were install on server X in the last 90 days?” I don’t expect someone to do the work for me but I could use some starting points. I ideally would like to see a report I can run and select a server or group and get a list of the actions that had successful components.

So the results would look like this assuming these patches were installed via bigfix in the last 90 days:

Server1:

Fixed - MS09-032: Cumulative Security Update of ActiveX Kill Bits - Windows 2000 SP4

Server2:

Fixed MS09-028: Vulnerabilities in Microsoft DirectShow Could Allow Remote Code Execution - DirectX 7.0 - Windows 2000 SP4

Fixed MS09-032: Cumulative Security Update of ActiveX Kill Bits - Windows 2000 SP4

Is this kind of report even possible? Any guidance on where to start is appreciated. I’ve made a few custom report but nothing fancy and am just not sure where to start. ie. Do I have to create an analysis or can I report directly off of actions or action history?

Thanks for you time…

2

(imported comment written by Lee Wei)

Hi Brian,

As a starting point, maybe you can check out the BigFix Excel Connector get extract this information.

http://forum.bigfix.com/viewtopic.php?id=3564

Note that it requires Web Reports 7.2 and above.

Invoke the Query Wizard

  • Select “Results of BES Fixlets” as the object of interest
  • Then select the Fixlet site, which should be "Patches for Windows (English)
  • For the attributes, Computer/Name is obviously your servers, then Fixlet/Name. Note that “Last Became Nonrelevant” is loosely synonymous to “installed on the server x”
  • In the last screen for Filter Criteria, select “Last Became Nonrelevant” > the date you desire

Lee Wei