I'm curious what some of you do for scanning workstations in large environemnts? (ie: >1000 Workstations)
Do you scan a sample subset of workstations for vulnerabilities? Do you scan every single PC? I can't seem to find any documents which discuss best practice in this scenario. Obviously scanning every workstation would be the most complete and secure way to go, but that can be cost prohibitive when you're paying per IP.