I scan once in the morning and once in the afternoon to try and get as many online PCs as possible.ģrd: Do you just want to scan for Windows Updates? If so, then ignore this. It will write a value for null returns, which is what you need. Use that script as the PS Scanner script. I had issues with the newest version of the script, so I used the version from Dec '20 and it worked just fine. So you'll never be able to see PCs that are fully patched. So if you scan for updates, update, then scan and find no will still show the latest results that DID return items. The problem with just making a basic PS Scanner is that it won't overwrite previous results if it doesn't return any data. What you do need to do is to download the PDQ git for their powershell scanners, specifically the one for Windows Updates. I'm not going to step through that part because there's plenty of documentation on it. If you get a list of updates (or Return code: 0), then you're good as far as that install goes.Ģnd: Now we need to make a powershell scanner for this. You can easily test this by doing a run command from PDQ Deploy on a machine with the following multi-line command import-module PSWindowsUpdate -force Ok, now we have the ability to use PSWindowsUpdate to scan for available updates. Step3: Powershell ::SecurityProtocol = ::Tls12 Step2: Job that silently installs C++ 2015-2019 runtime Install-PackageProvider -Name NuGet -MinimumVersion 2.8.5.201 -Force Step1: Powershell ::SecurityProtocol = ::Tls12 A lot of PCs will just be able to do an EZ "Install-Module PSWindowsUpdate -Force", but I ran into some issues with nuget being old and missing C++. What we need to do is be able to automate the detection of new updates, and configure some PDQ jobs to push out updates in batches.ġst: We need to install the PSWindowsUpdate module. Don't try and sell me on WSUS, since I know my CITO will just shoot down the request. We have some users with specific software that has been broken a few times in the past by automatic updates. We also have Group Policy to block automatic updates. Feel free to add suggestions if you have them! I don't claim that this will be the 100% most optimal way of doing things, but it will at least get you going. I am far from any sort of PowerShell wizard. Hopefully it helps someone 2 years down the line that is looking for the same thing. It took me a long time to finally get a good working solution to this, so I wanted to try to aggregate a lot of information into one post.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |