Vulnerability Assessment provides vulnerability information for installed software on Windows and Mac endpoints.
Enable Vulnerability Assessment policy
- On the left navigation menu go to Configure > Policies.
- Create a new policy or select an existing policy.
- Click the Software management tab.
- Check mark Allow scanning for known vulnerabilities in installed software for Windows or Mac endpoints.
- Click Save.
TIP - The Installed software on the endpoints setting under Events to report on is required to scan for vulnerabilities.
Scan for vulnerabilities
Run an on-demand or scheduled Inventory & Vulnerability scan to update the Vulnerabilities page.
NOTICE - Running Inventory & Vulnerability scans on endpoints is expected to use up to 350MB of memory and 25-50% of the CPU. We recommend running this scan on endpoints during off hours for users. For our minimum hardware requirements, see System requirements for Nebula.
On-demand scan
To run an on-demand scan for vulnerabilities, select the Scan Inventory & Vulnerability option from the action menu on the Endpoints page in Nebula. For more information, see Perform actions on endpoints in Nebula.
Scheduled scan
To create a scheduled scan for vulnerabilities, select the Scan Inventory & Vulnerability option for your schedule type on the Schedules page in Nebula. For more information, see Scheduled scans in Nebula.
Return to Nebula Vulnerability Assessment guide.
