Patch Domain

Patch report extends the analytics and reporting capabilities of BigFix Compliance from security configuration to security patching. This feature allows you to gain a comprehensive and historical view of patching activities across the entire deployment to assess the overall patching posture. It enables more efficient prioritization of vulnerability remediation by identifying the critical and high severity patches that have to be applied. It also tracks when a new patch is released by the vendors and applies to each endpoint to help you demonstrate compliance with regulations or policies and pass the audits.

BigFix Patch domain report is a component of BigFix Compliance Analytics. The patch domain report has different categories of reports like Overview, Patches, Computers, Computer Groups, and Unsupported Computers. The generated reports can be filtered, sorted, grouped, customized, or exported by using various tools.

Prerequisites: You have to enable patch reporting to import the patch data. To enable the patch reports, see Domain Settings.

Important! Versions before 2.0.10, the "Remediations Required" count included both superseded Fixlets and Fixlets unrelated to Common Vulnerabilities and Exposures (CVEs). From version 2.0.10 onwards, this count has been updated to exclude superseded Fixlets and any Fixlets not linked to a CVE. This adjustment aims to more precisely represent the actual number of patch Fixlets necessary for updating systems to the latest security standards.