Palo Alto Networks Knowledgebase: How to determine missing patches from HIP check

How to determine missing patches from HIP check

1704
Created On 02/07/19 23:41 PM - Last Updated 02/07/19 23:42 PM
Resolution

When the patch list of the HIP object is long, it is difficult to find which required patches are missing.

 

  1. Copy the missing patches from HIP Check logs and save it in a text file called patches.txt. Screen Shot 2015-07-10 at 21.47.43.png
  2. Use the following shell command to scan the Palo Alto Networks running config for each of the missing patches.
    $ for k in `cut -d$'\t' -f2 patches.txt`; do echo $k; grep $k running-config.xml; done

    In this example, KB2952664 is missing.Screen Shot 2015-07-10 at 21.50.46.png

 

 



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClvwCAC&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language