I was told by the person who set up our initial installation (1000 nodes) not to use AutoFix, only for very important and extremely critical patches.
What is everyone elses though on this? I just remediated about 40 critical vulnerabilities, so should these all be set to AutoFix? I would prefer not to have to scan for and check for non-compliant machines in the future. With WSUS, they were approved once (after testing) and we set it and forget it.
All thoughts and opinions welcomed!
Regards,
Rich