1 of 1 people found this helpful
Autofix status is not accessible from the query interface; this has to be done from sql. The relevant tables are Vulnerability and ComputerVulnerability.
Thanks for the follow up Jack.
Am I going about this the wrong way?
Should I be using compliance groups or something similar?
My security team just wants a weekly report of all machines that are missing the patches that are set to be autofixed. I'm sure there has to be an easy way to do this.
Yeah - it should be pretty easy to write a SQL script that pulls the results for you.
Whether a patch is set to Autofix or not is a flag (so you'd search just for patches who have autofix enabled) and then crossreference that against the COMPUTERVULNERABILITY table, searching the patch-ID's for affected COMPUTER_IDN's (which you can then resolve to "proper" host names via the COMPUTER table).
Your DB resource should be able to whip up something like this in 5-10 mins max I'd imagine.
LANDesk EMEA Technical Lead
If you want to have pretty landesk reports or queries, the way to do it (and we have helped do it with Managed Planet's DTS, or you can do it manually), is to make a new attribute on Security and Patch Definitions, then do a simple SQL statement to copy the autofix value over and you now have the data in inventory and can do all the cool things with it that you are used to.
Thanks guys! My with your help, my DBA was able to pull the necessary info from the DB.