We would like to know which servers have not gotten patched in the last 60 days,
Can we do this with:
1) The SCCM MP?
2) Monitoring a specific Event ID
3) Monitoring a log file such as https://docs.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/log-files#BKMK_SU_NAPLog or https://info.adaptivedge.com/blog/understanding-sccm-sup-process
4) Having access to the Software Updates - Compliance report in SCCM