Purpose

An explanation of why Ivanti Patch for Windows patch scan results may differ from Windows Update

Solution

The patch detection method and logic Patch for Windows and Windows Update is fundamentally the same, yet different in it's execution and scope.

Patch for Windows will scan for Microsoft and 3rd party updates while a Windows Update scan will scan for Microsoft updates only.  Both products have the ability to scan for Security Patches, Non-Security Patches, Security Tools, but Windows Update will include driver updates which are not support by Patch for Windows.

Windows Updates for the most part won't allow you to filter the scan results, it will attempt to identify all required Microsoft patches on the client. Depending on the Scan Template you are using in Patch for Windows, the results will vary. For instance; the built-in Security Patch scan will only show missing Microsoft and 3rd party security patches and the WUScan scan will scan for Microsoft and 3rd party security patches and non-security patches.

Patch for Windows uses a variety of detection methods determine is a patch is Installed or Missing on the client. The process is detailed in the document Explanation of how patch scan detection works in Patch for Windows

Administrators can view files and registry entry criteria by searching for the patch in View > Patchesof the Patch for Windows main menu.  Viewing Patch Details

Affected Products

Patch for Windows 9.3+