So I'm new to using BigFix and just so happened to inherit it not long before WannaCry. It seems that Windows 10 Creator are all set, but builds 1607 and 1511 (1511 more precisely) still show up as being "vulnerable" based on the relevancy towards the top. When I try to run the most recent auto baseline that's created, apply it to those machines, almost all of them come back "not relevant" (for 1511 with 10.0.10586 and 10.0.10586.916). I'm thinking the patches that are need above, are not being grabbed by the baseline.
How can I go about this? Should I make a new baseline, apply it to those machines, and pick out all the components or "patches" above?
I know we've been hearing that ALL windows 10 are fine, but my agency still wants them patched.