I'm looking for a way to report on machines that have not been successfully patched even though they are being scanned and checking in with the Shavlik Protect cloud/server. We currently get a regular report called "Machine Status by Patch Count" and this tells use which machines are missing the most patches, but not how long they've been missing. Typically most of those go away by the next day. I'm wanting to find the machines that are missing patches and have been for a period of time as this suggests there's a problem with the Shavlik agent or the machine. Any advice would be appreciated.
The only way you can track machines not being patch is based on the number of patches missing on it. It's not the greatest method, but we don't have a trending report based time and missing patches. I think Machine Status by Patch Count is your best bet. We do have reporting software that could do this: https://www.ivanti.com/products/xtraction