1 of 1 people found this helpful
This is already done by default, Protect will not install new Office components and will only scan for patches for components already installed. The default scan template Security Patch Scan and WUScan will automatically only scan for patches where the products are installed on the client machine. In other words, these scan templates would only show missing patches for products installed. So if a patch shows missing we have already determined the product for the patch is installed. I would suggest using the Security Patch Scan or WUScan template and only filter out patches that cause issues in their environment using Patch Group.
Here are the basics on what happens during the scan:
Determine language of the OS.
Detect installed products <- This is the step that would choose what Office components to scan for.
Patch detection for all installed products.