Windows 7 / Getting Started

Inventorying Software

After you create an update team, you must inventory the software on your network. Specifically, you need to know which operating systems and applications you have installed to identify updates that need to be deployed. You also need to understand the security requirements for each computer system, including which computers store highly confidential information, which are connected to the public Internet, and which will connect to exterior networks.

For each computer in your environment, gather the following information:

  • Operating system Document the operating system version and update level. Remember that most routers, firewalls, and switches have operating systems. Also document which optional features, such as IIS, are installed.
  • Applications Document every application installed on the computer, including versions and updates.
  • Network connectivity Document the networks to which the computer is connected, including whether the computer is connected to the public Internet, whether it connects to other networks across a virtual private network (VPN) or dial-up connection, and whether it is a mobile computer that might connect to networks at other locations.
  • Existing countermeasures Firewalls and virus checkers might already protect a computer against a particular vulnerability, making the update unnecessary. For firewalls, document the firewall configuration, including which ports are open.
  • Site If your organization has multiple sites, you can choose to deploy updates to computers from a server located at each site to optimize bandwidth usage. Knowing at which site a computer or piece of network equipment is located allows you to deploy the updates efficiently.
  • Bandwidth Computers connected across low-bandwidth links have special requirements. You can choose to transfer large updates during nonbusiness hours. For dial-up users, it might be more efficient to bypass the network link and transfer updates on removable media, such as CD-ROMs.
  • Administrator responsibility You must understand who is responsible for deploying updates to a particular device and who will fix a problem if the device fails during the update process. If others are responsible for individual applications or services, make note of that as well.
  • Uptime requirements Understand any service-level agreements or service-level guarantees that apply to a particular device and whether scheduled downtime counts against the total uptime. This will enable you to prioritize devices when troubleshooting and testing updates.
  • Scheduling dependencies Applying updates requires planning systems to be offline. This can be a disruption for users, even if the device requires only a quick reboot. Understand who depends on a particular device so that you can clear downtime with that person ahead of time.

Some of this information, including operating system and installed applications, can be gathered in an automated fashion. Most network management tools have this capability, including Configuration Manager 2007 R2. You can also inventory Microsoft software on a computer by using Microsoft Software Inventory Analyzer (MSIA), a free download.

More Info For information about MSIA, visit http://www.microsoft.com/resources/sam/msia.mspx.

[Previous] [Contents] [Next]

In this tutorial:

  1. Managing Software Updates
  2. Methods for Deploying Updates
  3. Windows Update Client
  4. Windows Server Update Services
  5. System Center Configuration Manager 2007 R2
  6. Manually Installing, Scripting, and Removing Updates
  7. Overview of Windows 7 Update Files
  8. How to Script Update Installations
  9. How to Remove Updates
  10. Deploying Updates to New Computers
  11. Other Reasons to Use a Private Network for New Computers
  12. Managing BITS
  13. BITS Behavior
  14. BITS Group Policy Settings
  15. Configuring the Maximum Bandwidth Served For Peer Client Requests Policy
  16. Managing BITS with Windows PowerShell
  17. Windows Update Group Policy Settings
  18. Configuring Windows Update to Use a Proxy Server
  19. Tools for Auditing Software Updates
  20. The MBSA Console
  21. MBSACLI
  22. Scheduling MBSA
  23. Troubleshooting the Windows Update Client
  24. The Process of Updating Network Software
  25. Assembling the Update Team
  26. Inventorying Software
  27. Creating an Update Process
  28. Discovering Updates
  29. Evaluating Updates
  30. Speeding the Update Process
  31. Retrieving Updates
  32. Testing Updates
  33. Installing Updates
  34. Removing Updates
  35. Auditing Updates
  36. How Microsoft Distributes Updates
  37. Security Updates
  38. Update Rollups
  39. Service Packs
  40. Microsoft Product Life Cycles