Microsoft SCCM scanner overview
IBM® QRadar® imports scan reports from Microsoft System Center Configuration Manager (SCCM) scanners.
The Microsoft SCCM scanner collects the following information:
- Asset information
- name
- NetBIOS name, OS and version
- IP addresses
- MAC addresses
- Installed patches
- Pending patchesNote: Pending patches might or might not have a vulnerability reference.
To integrate a Microsoft SCCM scanner, complete the following steps:
- On your Microsoft SCCM scanner, configure WMI enablement.
- If automatic updates are not enabled on your QRadar Console, download and install the Microsoft SCCM RPM.
- On your QRadar Console, add a Microsoft SCCM scanner.
- On your QRadar Console, create a scan schedule to import scan result data.