Security Compliance checks if Scan Now or Scheduled Scan are run regularly and if these scans are completed within a reasonable amount of time.
Security Compliance can only report the Scheduled Scan status if Scheduled Scan is enabled on agents.
Security Compliance uses the following scan compliance criteria:
No Scan Now or Scheduled Scan performed for the last (x) days: The Security Agent is non-compliant if it did not run Scan Now or Scheduled Scan within the specified number of days.
Scan Now or Scheduled Scan exceeded (x) hours: The Security Agent is non-compliant if the last Scan Now or Scheduled Scan lasted more than the specified number of hours.
A non-compliant agent is counted at least twice in the Compliance Report.
In the Endpoints with Outdated Scanning category
In the category for which the agent is non-compliant. For example, if the last Scheduled Scan lasted more than the specified number of hours, the agent is counted in the Scan Now or Scheduled Scan exceeded <x> hours category. If the agent satisfies more than one scan compliance criteria, it is counted in each category for which it is non-compliant.
Run Scan Now or Scheduled Scan on agents that have not performed scan tasks or were unable to complete scanning.