.NET Framework

Determines whether information about the optional features should be read. This only applies to desktop operating systems.


Advanced Audit Policy

Determines whether the advanced audit policy should be read. If this setting is set to abort on failure and PowerShell remoting cannot be connected, or the scan mode is set to classic only, the scan will fail.


Audit Policy

Determines whether the local audit policy should be read.


Antivirus Products

Determines whether the installed and supported antivirus products should be read. This currently only applies to Microsoft Defender on Windows Server 2016, Windows 10, and above.


Backup Products

Determines whether the installed and supported backup products should be read.


Batteries

Determines whether the batteries should be read from Windows machines.


BIOS Information

Determines whether BIOS information should be read from Windows machines.


Available Server Features

On Windows 2012 and above determines whether information should be read about Windows server roles and features that are available but not installed. By default, this is false.


CD-ROM and DVD-ROM Drives

Determines whether the CD-ROM and DVD-ROM drives should be read from Windows machines.


Devices

Determines whether device and driver information should be read from Windows machines.


Disk Drives

Determines whether the Windows agent should read disk drives from Windows machines.


Disk Quotas

Determines whether the Windows agent should read disk quota settings.


Disk Quotas (Individual Entries)

Determines whether the Windows agent should read individual user and group account disk quota entries, including disk space limits and usage.


Disk Volumes

Determines whether the Windows agent should read the disk volumes on a Windows machine. This applies to Windows Server 2003, and above.


Disk Volumes (NTFS Security)

Determines whether the NTFS security settings should be read for disk volumes.


Disk Volumes (Shadow Copy Configuration)

Determines whether the shadow copy configuration should be documented for the volumes on Windows machines. This only applies to server operating systems, and when the disk volumes option is enabled. This setting does not apply to Nano server.


Environment Variables

Determines whether this agent should read the environmental variables of the system.


Environment Variables (User)

Determines whether the agent should read the environmental variables assigned to individual users. This setting only applies when "Environment Variables" is enabled.


Event Logs

Determines whether event logs should be read for Windows machines.

Event Logs (Entries)

Determines whether event log entries should be read for Windows machines.



Event Logs (Entries Maximum)

Determines the maximum number of the most recent event log entries that should be read for Windows machines. Valid values are from 1 to 200.


Event Logs (Security)

Determines whether the security descriptor should be read for event logs. The default security descriptors can only be read on Windows Server 2012 and above when using PowerShell remoting.


Hosts File

Determines whether the agent should read the hosts file, including its contents, on a Windows machine.


Installed Programs

Determines whether the agent should read the installed programs on a Windows machine.


Internet Settings

Determines whether the agent should read the Internet settings on a Windows machine, this includes Internet Explorer version and system level proxy settings.


Local Account Policies 

Determines whether the agent should read the local account and password policies of a Windows machine.


Local Accounts

Determines whether local user accounts (both users and groups) should be read from Windows machines. This setting does not apply to domain controllers.


Local Administrator Password Solution (LAPS) Settings

Determines whether the agent should read the Local Administrator Password Solution (LAPS) settings on the Windows machine.


Machine Certificates

Determines whether the machine level SSL certificates including intermediate and trusted root certification authorities should be read from Windows machines.


Manufacturer Specific

Determines whether the agent should read manufacturer specific information. This setting requires that the agent supports the specific hardware manufacturer, that SNMP is installed and that the manufacturer's SNMP support agents are installed.


Network Adapters

Determines whether the network adapter configuration should be read on Windows machines.


Network Load Balancing

Determines whether basic network load balancing information should be collected for the Windows machine including whether network load balancing is enabled and the names of the clusters that this machine is a member of. For additional information, the cluster can be scanned using the Microsoft Network Load Balancing Cluster agent.


ODBC Configuration

Determines whether the ODBC configuration should be read on Windows machines.


ODBC Passwords

Determines whether passwords from the ODBC configuration should be read on this machine. Passwords are stored in plain text. By default, this option is disabled.


Optional Features (Desktop Operating Systems)

Determines whether the agent should read information about the optional features for Windows machines. This only applies to desktop operating systems.


Operating System License

Determines whether operating system license information should be read for Windows machines running Windows Vista, Windows Server 2008, and above.


Page Files

Determines whether the page file configuration should be read for Windows machines.

Physical Memory

Determines whether the physical memory configuration should be read on Windows machines, including the total physical memory and installed physical memory devices.


PowerShell Configuration

Determines whether the agent should read the PowerShell configuration on Windows machines.


Printers

Determines whether printers should be read on Windows machines. The spooler service must be installed and running in order to perform the scan.

Printers (Security)

Determines whether printer security settings should be read on Windows machines. This setting only applies when the printers are read using PowerShell remoting.

Processes

Determines whether the agent should read the running processes on Windows machines.


Processors

Determines whether the agent should read the processors on Windows machines.


Processors (Utilization Values)

Determines whether processor utilization values should be read from Windows machines.


Processors (Utilization Values Count)        

The number of processor utilization values to read. The values are read one per second and can increase the overall scan time.        


Process Descriptions (WMI)

Determines whether the agent should read the description from all running processes when using WMI. This requires that the agent connects to the remote machine using the administrative shares.


Remote Assistance

Determines whether the Remote Assistance settings should be read for Windows machines.


Remote Desktop

Determines whether the Remote Desktop settings should be read for Windows machines.


Routing Configuration

Determines whether the routing tables and persistent routes should be read on Windows machines.


Scheduled Tasks

Determines whether scheduled tasks should be read. Disabling the scanning of scheduled tasks will also affect the ability of the agent to determine the schedule of volume shadow copies.


Scheduled Tasks (Microsoft Built-In)

Determines whether built in tasks within the Microsoft folder in the Scheduled Tasks Library should be read. This applies to Windows Vista and 2008 and above only. This applies only when the Scheduled Tasks option is enabled. By default, this is false.


Security Identifiers

Determines whether the agent should read the security identifiers of on Windows machines.


Security Options

Determines whether the security options should be read from Windows machines.


Share Configuration        

Determines the share configuration options.

SNMP Configuration

Determines whether the SNMP Configuration including managers and community strings should be read from Windows machines.


Startup Commands

Determines whether the start-up commands should be read from Windows machines.


User Rights Assignment

Determines whether the agent should read the user rights assignments from Windows machines.


Video Controllers

Determines whether the video controllers should be read from Windows machines.

Windows Firewall

Determines whether the agent should read the Windows Firewall with Advanced Security configuration from Windows machines running Windows 2008 and above.


Windows Firewall Rules

Determines whether individual Windows Firewall rules should be read from Windows machines. This setting is ignored if all firewall profiles are disabled.


Windows Firewall Rules (Include Disabled Rules)

Determines whether disabled Windows Firewall rules that should be read from Windows machines.


Windows Firewall Rules (Maximum)

Determines the maximum number of Windows Firewall rules that should be read from Windows machines.


Windows Firewall Timeout (Classic)

The timeout in seconds when connecting to the Windows Firewall API. This cannot exceed 120 seconds. This setting does not apply when using PowerShell Remoting.

Windows Patches

Determines whether the agent should read the installed Windows patches from Windows machines.


Windows Remote Management (WinRM)

Determines whether the agent should read the Windows Remote Management (WinRM) configuration from Windows machines.


Windows Update Configuration

Determines whether the agent should read the installed Windows Update configuration from Windows machines.


Windows Update History

Determines whether the agent should read the installed Windows Update history from Windows machines.


Windows Update Timeout

The timeout for reading Windows Update history and configuration in seconds. This setting does not apply when using PowerShell remoting. By default, this is 120 seconds.