We have not had anyone complain as of yet, but when they do, our plans is to create a custom rule that checks for the SP1 registry key OR the default Cisco checks until Cisco gets their rules up to date.
Everyone running Vista on our staff is either running pre-SP1 or x64 so we've not really tested it yet. Michael Stanclift Network Analyst Rockhurst University Conway Hall, Office 415 1100 Rockhurst Road Kansas City, Missouri 64110 (816) 501-4231 -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Eric Kenny Sent: Tuesday, March 25, 2008 9:13 AM To: [email protected] Subject: 4.1.3.1 - Some Vista SP1 Users Not Compliant? Hi everybody, We just rolled out our NAC to all residence halls over spring break. It seems Microsoft released SP1 for Vista around the same time. Anyway, long story short, using the Cisco rules for critical Windows patches, users who upgraded directly to SP1 without installing the previous patches are failing on the following updates: KB941644_MS08-001 KB932168_MS07-020 KB930178_MS07-021 KB935840_MS07-031 KB929123_1_MS07-034 HotFix908519 KB939840 KB939839 KB928843 KB920219 We know that SP1 encompasses these issues, so anyone with SP1 should be allowed on, but is not. Is anyone else experiencing this? If so, what did you do to get your users online? Eric J. Kenny Network Analyst Marist College 3399 North Rd. Poughkeepsie, NY 12601 845.575.3820
