Hi All,
I have a very quick question regarding compliance baselines targetting software updates. Does the update need to just be downloaded into a software update package and on an available DP or does the update also have to be deployed to the client for the compliance baseline to automatically remediate the install of this patch?
I'm looking at using ADRs and Software Update Deployments for our monthly patching but also maintain a seperate package that is just distributed and not deployed that the compliance settings can use to remediate devices that come back on the network after a few months.
Ideally this saves me keeping active deployments for months of patches about but old clients can still back patch themselves using the compliance baseline.