This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 55.00000000000001%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDD%3C/text%3E%3C/svg%3E)
Hello,
I am trying to list the machine having Windows Defender feature but missing System Center Endpoint Protection Application:
select distinct sys.Name0, gsof.Name0,
CASE
WHEN gsof.InstallState0 = '1' THEN 'Enabled'
WHEN gsof.InstallState0 = '2' THEN 'Disabled'
WHEN gsof.InstallState0 = '3' THEN 'Absent'
ELSE 'Unknown'
END AS FeatureStatus
from v_R_System sys
Join v_FullCollectionMembership fcm on fcm.ResourceID = sys.ResourceID
inner join v_GS_OPTIONAL_FEATURE gsof on gsof.ResourceID = sys.ResourceId
where
gsof.Name0 = 'Windows-Defender' and gsof.InstallState0 = '1'
and
fcm.CollectionID = 'UCP00020'
and sys.ResourceID not exists (
Select v_GS_ADD_REMOVE_PROGRAMS_64.ResourceID from v_GS_ADD_REMOVE_PROGRAMS_64
where v_GS_ADD_REMOVE_PROGRAMS_64.DisplayName0 like '%System Center Endpoint Protection%')
and
sys.ResourceID not exists (
Select v_GS_ADD_REMOVE_PROGRAMS.ResourceID from v_GS_ADD_REMOVE_PROGRAMS
where v_GS_ADD_REMOVE_PROGRAMS.DisplayName0 like '%System Center Endpoint Protection%'
)
order by gsof.Name0
===========================================================================
I always got 0 result which is wrong as I know at least 2 machines with Windows Defender feature not having SCEP installed.
What is wrong?
Thanks,
Dom
there is no silver bullet, break down the query into its parts and review result and review the data on the devices.
Thanks Garth I found the issue it was a typo...