VMware on Cloud

VMWare on Cloud

Join us to learn more from a community of collaborative experts and IBM Cloud product users to share advice and best practices with peers and stay up to date regarding product enhancements, regional user group meetings, webinars, how-to blogs, and other helpful materials.

 View Only

How to Deploy Security and Compliance Center Workload Protection with VCFaaS on Windows

By JANET VAN posted 26 days ago

  

Expanded posture and vulnerability management for Windows OS on VCFaaS

The IBM Cloud Security and Compliance Center Workload Protection now offers expanded posture and vulnerability management support for Windows servers, now providing fuller cloud-native application protection platform capabilities across hybrid multicloud including to the existing Threat Detection support for Windows. Clients can ensure their Windows workloads on VCFaaS meet security standards, identify threats in real-time and proactively address vulnerabilities through streamlined installation and integrated workflows. Easily gain these capabilities with this how-to tutorial on how to get started with the Security and Compliance Center for Windows. 

How Deploy Security and Compliance Center Workload Protection for Windows

Get Started with Security and Compliance Center Workload Protection

Get started by creating and connecting an instance of the Security and Compliance Center Workload Protection following these steps:

  1. Navigate to the IBM Cloud Catalog.
  2. Select the Security and Compliance Center Workload Protection tile.
  3. Create an instance and connect your IBM Cloud to automatically get the results for recommended IBM policies.
  4. Install an agent virtual machines including for Windows hosts to leverage full CNAPP support.

Install the Windows Agent

Install the Windows agent in the windows machine from this link. For Windows machines running in the IBM private network, they can use this link instead. Please consider the following prerequisites to continue the installation process successfully. 

Prerequisites

To install the Windows Agent, the following requirements need to be met:

    • Windows Server 2019 and above.
    • Visual C++ 2015-2022 Redistributable package. It can be downloaded from the official Microsoft link.
    • ACCESS_KEY: The Agent access key. 
    • COLLECTOR: IBM SCC WP endpoint. Set it accordingly, endpoints for each IBM Cloud region are available on this list.
    • Administrator permissions on the Windows host to perform the setup.

Installation

Once you download the installer, you can run it like this:

msiexec /i sysdig-host-shield.msi REGION=<region> ACCESS_KEY=<AGENT_ACCESS_KEY> VM_FEATURE_ENABLED=True POSTURE_FEATURE_ENABLED=True ACCEPT_TERMS_CONDITIONS=True /qn

You can also use the graphical installer.

Once you complete the full installation steps, you should now have the Windows agent for Security and Compliance Center Workload Protection appropriately installed! Now you can easily access the unified posture management, vulnerability management and threat detection capabilities to automate securing and protecting your critical Windows servers on VCFaaS.

Learn More

Check out the recent Security and Compliance Center Workload Protection product announcements to learn more about fuller Windows support available to leverage today and expanded coverage for IBM Cloud, Linux, PowerVS AIX and more!

0 comments
7 views

Permalink

https://community.ibm.com/community/user/blogs/janet-van/2025/05/30/how-to-deploy-scc-wp-with-vcfaas-on-windows