I’ve been trying to find good reporting on windows feature release and security updates using intune.
Setting up compliance log analytics allows you to collect data about your endpoints. But the reporting, even with the Update Compliance solution in Azure Log Analytics, is less then what we need to report to auditors. One big issue is that most of the canned reports only show from the latest patch which gives us maybe one week where computers have checked in, downloaded, and installed the patches if everything is working right, before the next patch Tuesday. I’m looking for a while to report if machines are current 2 or 3 months back.
Below are post I’m tracking to get ideas and more details about update compliance and Azure Log analytics.