The new MBSA and MBSACLI (command line) is decent, but in my opinion – still not as good as the old shavlik HFNETCHK 4.0 which was free and did a great job at managing patch reporting and such.While attempting to review a Server 2K8 (x64) server, I got the following error:
| Command Used: mbsacli /catalog c:\temp\mbsa\wsusscn2.cab /n password+iis+os+sql /target domain\hostname /wi /nvc |
| Security assessment: Incomplete Scan Computer name: domain\hostname IP address: *.*.*.* Security report name: domain – hostname (4-6-2010 12-13 PM) Scan date: 4/6/2010 12:13 PM Scanned with MBSA version: 2.1.2112.0 Catalog synchronization date: 2010-03-29T19:48:27Z Security update catalog: Microsoft Update (offline) Security Updates Scan Results Issue: Security Updates |
Bang, so the message i get is there may be a firewall port or firewall setting blocking my ability to review the patch status. So I question, is there a command I can run to easily open these settings and allow for the patch reporting from the mbsacli 2.1.2112 command line interface? Lets take a look.
| For unmanaged hosts: Open port 135 and create the following registry key… |
