Environment:
SCVMM 2012 R2, running on Server 2012 R2 Datacenter
I have 3 clusters that I am trying to manage inside VMM, during configuration I have successfully completed a scan against the cluster, which has scanned each Hypervisor child object. Against my baselines (which covered all updates from 2012 - present) I was then able to remediate the hosts and Live Migration etc all went really well.
However a month down the line, I have created a new baseline for April (to include the updates for the Badlock vulnerability), done a compliance scan, and all Hypervisors say they are compliant, and as such the Remediate button is greyed out.
I cross referenced this to the WSUS console, and WSUS still states 15 updates are required.
As an unrelated issue (or I think it is unrelated) all of my Hypervisors went into unassigned and were no longer present in the SCVMM Managed Computers group - so I have then written client-side targeting into my Group Policy to add them to organised groups instead - could this potentially be related, and if so, how would I get WSUS to re-allocate them to the SCVMM Managed group without the need for client-side targeting.
Any help much appreciated!
Nick