Security and privacy for queries in Configuration Manager
Applies to: Configuration Manager (current branch)
Queries in Configuration Manager let you retrieve information from the site database according to criteria that you specify. Configuration Manager collects site database information during standard operation. For example, by using information that's been collected during discovery or inventory, you can configure a query to identify devices that meet specified criteria.
For more information about queries, see Introduction to queries. For security best practices and privacy information about Configuration Manager operations that collect the data you can retrieve by using queries, see Security and privacy for Configuration Manager.
Security best practices for queries
Use this security best practice for queries.
Security best practice | More information |
---|---|
When you export or import a query that's saved to a network location, secure the location and the network channel. | Restrict who can access the network folder. Use Server Message Block (SMB) signing or Internet Protocol security (IPsec) between the network location and the site server to prevent an attacker from tampering with the query data before it's imported. |
Next steps
Feedback
https://aka.ms/ContentUserFeedback.
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see:Submit and view feedback for