Due to XP EOL and Patches not being distributable via Altiris I had to come up with a way to patch IE as we will be receiving the XP updates for one more year (paid service).
I have not learned how to do detection rules or applicability rules yet but it is on my to do list. Hopefully this will help someone.
OS side is easy to do but IE is more difficult as Add Remove Programs does not contain ALL machines with IE versions.
You need to create a custom data class:
vbscript:
Policy
After the inventories start coming in you then can target. I am planning on doing a dynamic filter that will utilize machines in a specific version of IE then also use the " NOT IN " AddRemove table for the KB
example:
select Guid from vResource where ResourceTypeGuid in (select ResourceTypeGuid from ResourceTypeHierarchy where BaseResourceTypeGuid='493435f7-3b17-4c4c-b07f-c23e7ab7781f') and GUID IN ( Select t2.[ResourceGUID] FROM [vCollection] t1 inner join [CollectionMembership] t2 on t1.GUID = t2.CollectionGUID inner join [Inv_Aex_AC_Identification] t3 on t2.ResourceGUID = t3._resourceGUID WHERE t1.[Name] = 'Windows XP Computers' and t2.[ResourceGUID] NOT IN ( select t1._ResourceGuid from [Inv_AddRemoveProgram] t1 where t1.DisplayName like '%(KB2718523)%'))
That is it. I hope it helps someone else out. I understand this may not be the easiest but it does work. Since I am reading that Patch does the detection rules, that maybe the best approach but until I learn that, this will have to do.
Files:
Enjoy
Jeffrey J. Riggs