It can be confirmed from the main menu if the security patches have been installed to CT.
In addition, installation state of the security patches can be confirmed via email when setting the warning notice. Refer to relevant contents of "2.5 Set Alarm Notification" for Settings of the warning notice.
Steps to confirm installation
Installation confirmation of the security patches is performed in PC Information in the main menu. In addition, the installation state can also be saved as CSV format file.
Whether installation of the security patches is finished normally or failed can be confirmed in the Environment Setup window in CT. For detailed information, refer to relevant contents of Operation Guide: for Clients.
Take the following steps.
Log on the main menu, click PC Information.
The PC Information window will be displayed.
Click Software Auditing.
The following window will be displayed.
Select the department to be displayed.
The following window will be displayed.
Select product from Security patch in the tree on the left field.
Security patches corresponding to the selected product will be displayed in the field on the right.
Confirm number of the qualified PC displayed in Software List.
Click CSV Export button to download installation state of the security patches as CSV format file.
This section explains how to view the Installation state of security patches window. For example, after Windows8 is selected in window of Installation state of security patches, security patches information related to Windows 8 and number of qualified PC will be displayed.
Window of Installation state of security patches is composed of the following.
Name of component (e.g. Windows8)
Name of component installed
(e.g. Windows 8 is installed)
Name of component (no installation code) not installed
(e.g. Windows8:2978668(MS14-047I) is missing)
Name of component not installed(invalid)
(e.g. Windows8:2916036(MS14-005I) is missing[void])
Security patches and service patches displayed as "void" need not be confirmed or counted.
"void" of security patches and service patches indicates this security related problem has been solved through other security patches or service patches.
Take the following steps to identify the PC with and without installation of the security patches and service patches in the window of Installation state of security patches.
Find the items to have the state looked up in list of the security patches.
When number of the qualified pieces is "0", no insufficient installation of security patches existing in the selected Component. End of the confirmation.
When number of the qualified pieces is not "0", insufficient installation of security patches is existing in the selected Component. Enter the next step.
Click Corresponding Number of the security patches and service patches not displayed as "0".
State of PC desired to be understood shows in the selected security patches and service patches.
Security patches won't be installed in the following circumstances.
Power not turned on for CT to install the security patches
CT to install the security patches not connected to network
Solve the above problems to install the security patches.
It could be that errors have happened in installation Processing of the security patches at the Client when the problems can't be solved. Confirm the CT operation status log and the State label in CT Environment Setup window and refer to "CT Messages" in Reference Manual for identification of the causes and to perform the corresponding Processing.
See below for an example of the Environment Setup window of CT.
Column of Patch installation status: relevant information will be displayed here in case of abnormal installation of the security patches.
As to CT with no security patches installation, its status can be confirmed with the status checking command of CT operation. Refer to relevant contents in Reference Manual for more information.
As to CT with no security patches installation, the status log of Ct operation can be confirmed. See below for method to confirm.
Take one of the following measures to identify the PC and its name with no security patches installation.
Confirm name of the PC with no security patches installation in window of PC Information > Software Auditing in the main menu.
Select Software supervision in window of Event Settings and set it as name of the passed PC with no security patches installation.
The administrator can be regularly noticed of name list of the PC with no security patches installation through event settings.
Refer to relevant contents of "2.5 Set Alarm Notification for window of event settings.
Search the PC name information from the CT operation status log saved on CS to confirm if the security patches have been installed.
As to check and retrieval of the CT operation status log, use Microsoft(R) Excel or editor to confirm.
Saving of the CT operation status log will default to the following directory.
CS installation directory \FJSVsbinv\ct_trace\ User ID+PC name + superior server name \dpsysdYYYYMMDD.log |
Remarks.
Storage path and days of management of the CT operation status log file can be modified with the command of SVPolicy.exe (Server Environment Setup).
Refer to relevant contents in Reference Manual for detailed information about the file of CT operation status log.
See below for examples of the CT operation status log detected to be without security patches installation.
Example 1: Failure of security patches installation
user1,pc1,server1, 2008/06/12 20:15:05.717,INFO,POLICY,RECEIVE,OK "install MS04-012(828741) to Windows2000 " "install MS04-012(828741) to Windows2000" "install MS04-012(828741) to Windows2000 " |
Pay attentions to the lines in red. Detection result of installation status shall be no installation by judgment as abnormality has happened to installation Processing of the security patches.
Example 2: Failure of policy receiving, causing unavailability of security patches for installation
user1,pc1,server1, 2008/06/12 08:53:10.750,INFO,DTP,SVCSTART, |
Pay attention to the line in red. Due to failure to receive policy, the security patches can't be installed to CT, detection result of installation state shall be no installation judging by this.
Example 3: the security patches are installed, but after installation there is no restart
user1,pc1,server1, 2008/06/12 20:15:56.612,INFO,PATCH,START,,2 |
Pay attention to the line in red. The security patches have been installed normally, but after installation, due to lack of restart of Windows, the security patches can't be reflected in Windows, detection result of installation state shall be no installation judging by this.
After restart of Windows, the following contents will be output to the status log of CT operation.
user1,pc1,server1,2008/06/12 20:23:15.859,INFO,REBOOT,SELECT,,Now |
Example 4: No abnormalities are recorded in the status log of CT operation.
That no abnormalities are recorded in the status log of CT operation means that CT has no problems. Confirm in window of Environment Setup > CS/DS Settings and Status in the main menu to see if CS and DS are running normally.
Confirmation of unapplied patches information
Patches not automatically installed to PC can be confirmed in the list.
Refer to relevant contents in "3.2.1 View Inventory Information" for confirmation of unapplied patches information with the patches list.
