I’m working with a customer setting up SCM, and I noticed that the Vulnerabilities to Windows Systems site is not present in their License Overview.
Has this site been deprecated? If so, when did this happen, and where is the announcement? What is the plan for this going forward?
Hi, the ‘Vulnerability to Windows’ site has not been deprecated. It is in a maintenance mode since we are not making new investment in it. For existing customers that need to activate this site, they can contact the BigFix support team to get a masthead.
BigFix Compliance has now included a new ‘Vulnerability Reporting’ capability in its Compliance Analytics (SCA) module. This feature actually provides more comprehensive and reliable vulnerability information across multiple platforms. We recommend all Compliance customers to leverage this new capability for their vulnerability reporting needs.
Thanks for your reply. Looking at the documentation, Vulnerability Reporting is BFC v10.0 feature. Unfortunately, this is not quite equivalent to the old approach, which uses BF to scan an endpoint for vulnerabilities, whether there is a patch or not. We’ll have to evaluate this.