11-17-2010 03:10 AM - edited 02-21-2020 04:09 AM
Hi,
In some cases we would like to use the NAC 4.8 Web agent to check the WindowsUpdate related things.
We have a managed WSUS server, the ckeck working well with native win32 clients, but when we try connect with web agent,
the report show the following:
At the Windowsupdate.log file there is NOTHING about it, nor connecting, or any related.
Tried with the activex and Java client, the result is same. Also tried to catch some ip packets with Wireshark going to wsus server, but there is active connection.
Is this a bug, or the web agent is not WIndowsUpdate check compatible?
Thanks
Attila
11-19-2010 09:56 AM
Hello. NAC Web agent doesn't trigger windows updates. The option you have is to type a link to the windows patch in the "requirement". If NAC web agent detects the patch is missing, it will show that link to the final user, so that user could remediate manually.
11-19-2010 10:02 AM
It is ok,but
"If NAC web agent detects the patch is missing"
The main problem that agent is NOT detects the installed patches, there is no activity at windowsupdate.log.
Attila
11-19-2010 10:20 AM
We'll have to check the "requirement rules" assigned to the particular role you're using, also the relevant "requirements" and "rules". That's what tells the NAC web agent what patches to look.
11-22-2010 03:24 AM
Hi Eduardo,
We can check all the requirement rules, but notes,
this check is works well with native win agents, so I assume the CAM Requirements and Rules side is ok.
Pls. confirm, there is no matter how I'd like to check win patches (via web or with client) at Checks/Rules/Roles/Requirements config.
Attila
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide