Environment
NetIQ Secure Configuration Manager
Situation
'Missing Patches' and 'Microsoft Patch Level Query' checks under Windows/System checks are showing some Microsoft patches as missing, although they have definitely been applied.
Invalid results in Microsoft Patch checks.
Invalid results in Microsoft Patch checks.
Resolution
The NetIQ Patch level functionality prior to NetIQ Secure Configuration Manager 5.7 is based on the data feed provided by Microsoft in their mssecure.xml file on how to verify if certain patch:
- has to be applied on the machine
- Is actually applied on the machine
Microsoft has dropped support for new products and updates in the mssecure.xml feed and moved to another format that is supporting Windows Server Update Services (WSUS) functionality.
Currently NetIQ Secure Configuration Manager 5.6 and previous versions still use the mssecure.xml feed.
NetIQ are incorporating the new Window Server Update Services (WSUS) format into the product in release 5.7.
A patch will be released in early 2008 and to provide this functionality in SCM 5.6
Cause
The NetIQ Patch level functionality prior to NetIQ Secure Configuration Manager 5.7 is based on the data feed provided by Microsoft in their mssecure.xml file. Microsoft has dropped support for new products and updates in the mssecure.xml feed and moved to another format that is supporting Windows Server Update Services (WSUS) functionality.
Additional Information
Formerly known as NETIQKB70766