Hi.
For my monthly Windows patch deployment, I deploy all updates to non-prod but for prod systems in the "Update Management Wizard", in the "Approval Options" I select "Include only approved updates EXECPT from the last 1 month".
My WSUS server (running on W2k12r2) downloaded updates on Aug 15, Aug 29 and Sep 5. I haven't looked into what was downloaded in these times. I'm running SW Pmgr v2.1.2.3034. All security and critical updates are automatically approved.
For Sep for the non-prod systems it deployed fine. For the prod systems I had a number of clients return "There are no updates that match the rules criteria". I have 2 groups for prod (split the load). They received the scheduled deployment to prod on Sep 13 (yes mid-week) and Sep 15. I know that the prod systems should have received updates.
So I need to understand how SW PMgr determines if a patch is applicable using the “except for the last 1 month” criteria.
Does PMgr look at the date the patch was published by MS? Does it look at just the month it was published, as opposed to doing a date calculation based on number of days? It doesn't appear to be the case.
Does PMgr use the date the patch was downloaded from MS and loaded into the WSUS database?
Does it calculate “except for the last 1 month” by subtracting 30/31 days from the date the scheduled task is configured to run and compare against some date in the patch?
Thanks
