Checking for patches on ESX

colemiccolemic Posts: 1,568Member ■■■■■■■□□□
I don't know a lot of VM stuff, but have a question - from an auditing perspective, is there a way/tool/trick to see if an ESX host is current on all of its patches? Not worried about the virtual systems (LANGuard takes care of that.) I don't think the Health Analyzer appliance does it either.

Any ideas on a quick, easy tool or method to determine if it is patched up?
Working on: CCSP, definitely, maybe. On the twitters: @mcole1008

Comments

  • gkcagkca Posts: 243Member ■■■□□□□□□□
    You need to install a vSphere Update Manager plug-in and then you'll be able to check for updates and compliance, here's the manual (.pdf) http://www.vmware.com/pdf/vsp_vum_41_admin_guide.pdf
    "I needed a password with eight characters so I picked Snow White and the Seven Dwarves." (c) Nick Helm
  • colemiccolemic Posts: 1,568Member ■■■■■■■□□□
    Thanks - we might be able to incorporate that, but is there (hopefully) a tool we could run to check for compliance/missing patches when we are onsite for audits? That is really what we are looking for.

    Thanks for the link though we might be able to use that.
    Working on: CCSP, definitely, maybe. On the twitters: @mcole1008
  • DigitalZeroOneDigitalZeroOne Posts: 234Member ■■■□□□□□□□
    Powershell/PowerCLI can retrieve patch data.

    Get-VMHostPatch -VMHost "Name of your Host"
Sign In or Register to comment.