Starting in, you can use the new Software Updates Dashboard to view the of devices in your organization and analyze devices that are at risk. This is the third dashboard since the Current Branch release which is a great effort from the product group to give better visibility on the data gathered by your Configuration Manager clients. We already made an overview of the and the Office 365 Management dashboard will also be a topic in a future post.

Read it once again,A software update compliance report that list all updates whether Targeted, Installed, Missing for specific Collection. SCCM ConfigMgr Compliance status of client for multiple software update groups. So i just left the SQL query for users if they want to make use of it to create report. SCCM Patch Compliance Report for Machines by Wildcard As an add on to a previous post I had for the patch compliance, the below query is to do the same thing but that it will allow you to list the. SCCM Patch Compliance.

SCCM Software Updates Dashboard Overview To open the dashboard: • Open the SCCM console • Go to Monitoring / Security / Software Updates Dashboard The dashboard is divided in 5 sections: • Devices Compliance Status • Missing Updates by Category • Critical Alerts • Last Successful Synchronization Time • Devices Missing Updates Devices Compliance Status Gives a number of devices the are compliant and non-compliant based on the Compliance Status Filters options using the 3 dots in the upper right corner. In our example 17 devices are compliant and 37 are not. In the Compliance Status Filter section, you can decide which Updates Category and the update time frame that you want included in the calculation. Missing Updates by Category This section is self-explanatory. By clicking on a section of the pie chart, the selected updates are displayed in the Devices Missing Updates section. In our example, we clicked on the 7 Update Rollups Critical Alerts The Critical Alerts section show any alerts related to Software Updates like Automatic Deployment Rules that has failed.

When clicking on the 1, we get redirected to Monitoring Alerts Critical – Updates which gives more details about the error. Last Successful Synchronization Time This section is self-explanatory, the Last Successful Synchronization Time on your Devices Missing Updates This section is interesting but incomplete.

In our example, we clicked on the 7 Update Rollups in the Missing Updates by Category section. The pane show those 7 Updates and the number of devices which requires the update. When clicking on a column, it would have been nice to have a list of those 30 devices for Article 890830 but you get redirected to the page instead. This is logic since there’s nothing that group those devices (ie: in a collection). Where it gets incomplete is that if we select 25 Security Updates, only 10 updates are displayed. There’s a maximum of 10 updates to be shown in the chart which is odd. Impossible to see the 15 other updates out of the 25.

Conclusion The new Software Updates dashboard is a really nice addition but as the other dashboards, it still lacks major features to rely on for your overall compliance. We still suggest to use built-in reports or our to monitor your compliance. How do you monitor your software update compliance?

Recently,we had an issue with SCCM Configmgr Reporting services role (Remote SQL sitting on VM was crashed,blog post coming soon ) and we were unable to generate reports mainly for the Software update compliance status that happens every month. This post is about,how to check the software update compliance status for the deployed software update group/Groups per collection/collections without using Configmgr Reports. The reason for posting this blog is,fixing the Configmgr Reporting services role took more than expected time and meantime,we need to check the status of patch compliance status and troubleshoot the non-compliant machines (servers) within the Maintenance window. I thought the SQL Code which I used to generate the compliance status would be handy for others if they do not want to Use configmgr Reports and use SQL Code for Quick results. If you are unable to generate compliance status using the SSRS Reports,the only possible method is,to depend on Monitoring node—deployments,look for the software update deployment for particular collection and see the non-compliant machines for troubleshooting which is not easy method if you have large number of deployments and collections. So,to overcome this,you can USE SQL management studio and run the query (posted below) to generate non-compliance list of clients with extra information like hardware inventory,software update scan,,Operating System,IP address,User Name,does it have Client etc.