In regards to the Microsoft Compliance and Vulnerability by Computer report, can someone please clarify the difference between Distribution Status = Active vs. All? The default was set to Active, which shows my workstations with 100% compliance however when I change the parameter to All, compliance drops to ~12% and I see many more bulletins with vulnerable status. From what I read, Active is for the patches that are distributed by Altiris, but what does this really mean? If I want to ensure my workstations are really 100% compliant, what parameters should I use in the report?
Release date = ?
Distribution Status = All (?)
Supersedence Status = Non-Superseded
Thanks in advance