The OnDemand scan can be performed immediately without waiting for the next scheduled scan. Users with the Cloud Agent Manager role can run the OnDemand Scan. This section covers the following:
Run the following commands to trigger the OnDemand scan via the Qualys User Interface Tool:
bduitool
location/usr/local/qualys/cloud-agent/epp/engine/bin/bduitool
bduitool
command with one of the available scan options:get scanprof [full/quick/custom]
scan -s full|quick|task <taskID>|(custom <path1> <path2>...)
For custom scans, specify a list of paths to be scanned, such as folders or files; you can also use wildcards.
scan -p
scan -r
scan -q
The pause
, resume
, or stop
commands apply only to scans initiated from Qualys Inc. User Interface Tool.
get scantasks
get scanlog <taskID>
get scanstatus [<taskID>]
get quar [-s<integer_value>]
- s<integer_value>
is a parameter that displays the specified number of most recent quarantined items.get quar -s 10
command displays the first 10 items from quarantine.
get events[-s<integer_value>]
scan -s full
scan -s task <taskID>
Run the following command to run a custom scan on the specified file and folders:
scan -s custom /home/user1/folder1 /home/user1/file.txt
If using wildcards for custom scans, we recommend the following:
scan -s custom /dir/*/dir
scan -s custom "/dir/*/dir"
scan -s custom "/dir/*/dir?"
The OnDemand Scan, scans the file system and memory for malware and other threats and takes remediation actions. You can configure the OnDemand Scan Settings from the EDR application.
Perform the following steps in the EDR application to configure the OnDemand Scan:
Was this topic helpful?