I am just starting to try the compliance scans and am struggling to detect out of policy CPEs
If I want to detect all Windows 7 installations, can I specify any CPE that starts with “/o:microsoft:windows_7:” I tried it, but it just returns nothing. Unfortunately every scan I have tried also returns nothing so it doesn’t fill me with confidence that I really have no Windows 7 instances.
I tried to search the CPE database for all CPE starting with that string, then export all to a file but the export takes at least 10 minutes and returns XML so that would need editing before feeding into the policy.
I am running the Professional edition on an appliance, v 21.04.15 so I do have up to date scan feeds.