Running software scans and gathering scan results on IBM i systems

Available from 9.2.5. The script that is responsible for the software scan collects the results of the catalog-based, package data, and software ID tags scan as well as retrieves results of the capacity scan and the computer.yml file. All these results are combined and compressed into a common ZIP package that can be imported to BigFix Inventory.

Before you begin

  • Make sure that you have the *ALLOBJ authority to perform this task.
  • Each time you update the software catalog in BigFix Inventory, run an import of data or wait for the scheduled import. Next download the newest version of software catalog to an endpoint to run the software scan on it. For more information, see: Downloading the software catalog.

About this task

  • The scan takes around 30 minutes. The exact time depends on the computer load, file system size, and the CPU threshold if you set it.
  • For information about default and minimal scan frequency, see: Frequency of scans and uploads of data.
  • By default, no limit is set on the processor usage during the scan. To limit processor usage, set the CPU threshold. For more information, see: Optimizing the processor utilization.


  1. Run the following command to initiate the scan. Substitute the default /cit directory with the directory where you uploaded the scanner.
  2. Monitor the progress of the scan. Check the run_sw_and_pack_std.log file created during the scan in the directory where you installed the disconnected scanner package, by default /cit/logs, or monitor the scanner logs. For more information, see: Monitoring the scan progress.


A ZIP package with scan results is created in the package output directory. The default directory is /cit. The package name is based on the following pattern: <YYYYMMDDHHMM>-<endpoint_ID>.zip.

What to do next

Import the package to BigFix Inventory. After it is successfully imported, delete it from the endpoint to save disk space.