Invoke-CMEndpointProtectionScan
Invokes a scan to detect malware on one or more devices in the Configuration Manager hierarchy.
Syntax
Invoke-CMEndpointProtectionScan
-DeviceCollection <IResultObject>
[-ScanType <ScanType>]
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Invoke-CMEndpointProtectionScan
-Device <IResultObject>
[-ScanType <ScanType>]
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Invoke-CMEndpointProtectionScan
-DeviceCollectionId <String>
[-ScanType <ScanType>]
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Invoke-CMEndpointProtectionScan
-DeviceCollectionName <String>
[-ScanType <ScanType>]
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Invoke-CMEndpointProtectionScan
-DeviceId <String>
[-ScanType <ScanType>]
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Invoke-CMEndpointProtectionScan
-DeviceName <String>
[-ScanType <ScanType>]
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Description
The Invoke-CMEndpointProtectionScan cmdlet invokes a System Center 2016 Endpoint Protection scan that is outside of any scheduled scans. You can specify the device or collection by using its name, ID, or by specifying an object that represents the device or collection.
For more information about how Configuration Manager supports Endpoint Protection, see Endpoint Protection in Configuration Manager.
Note
Run Configuration Manager cmdlets from the Configuration Manager site drive, for example PS XYZ:\>. For more information, see getting started.
Examples
Example 1: Invoke a full Endpoint Protection scan
PS XYZ:\>Invoke-CMEndpointProtectionScan -DeviceName "CMCEN-DIST02" -ScanType FullThis command invokes a full Endpoint Protection scan of the device named CMCEN-DIST02.
Parameters
-Confirm
Prompts you for confirmation before running the cmdlet.
| Type: | SwitchParameter |
| Aliases: | cf |
| Position: | Named |
| Default value: | False |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Device
Specifies the device that is scanned for malware.
| Type: | IResultObject |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-DeviceCollection
Specifies an object that represents a device collection whose members are scanned for malware.
| Type: | IResultObject |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-DeviceCollectionId
Specifies the ID of a device collection whose members are scanned for malware.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-DeviceCollectionName
Specifies the name of a device collection whose members are scanned for malware.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-DeviceId
Specifies the ID of a device that is scanned for malware.
| Type: | String |
| Aliases: | ResourceID |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-DeviceName
Specifies the name of a device that is scanned for malware.
| Type: | String |
| Aliases: | Name |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-DisableWildcardHandling
This parameter treats wildcard characters as literal character values. You can't combine it with ForceWildcardHandling.
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-ForceWildcardHandling
This parameter processes wildcard characters and may lead to unexpected behavior (not recommended). You can't combine it with DisableWildcardHandling.
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-ScanType
Specifies a full or a quick scan. A full scan looks at every location on the device. A quick scan looks at only those locations where malware is most likely to appear. The acceptable values for this parameter are: Full and Quick.
| Type: | ScanType |
| Accepted values: | Full, Quick |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-WhatIf
Shows what would happen if the cmdlet runs. The cmdlet doesn't run.
| Type: | SwitchParameter |
| Aliases: | wi |
| Position: | Named |
| Default value: | False |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Inputs
Microsoft.ConfigurationManagement.ManagementProvider.IResultObject
Outputs
System.Object
Related Links
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for