Free Security Scan for IBM i (AS/400, iSeries)

Identify, quantify, & prioritize vulnerabilities on your IBM i with our free network Security Scan.

The Fortra Security Scan is the place to start when you want to secure your IBM i (System i®, iSeries®, AS/400®). The free Scan provides a snapshot of your current system security in just 10 minutes. It runs directly from a network-attached PC, without modifying any system settings. The Security Scan audits common security metrics and displays the results in an easy-to-read, browser-based application. A Fortra Security Advisor helps you interpret the results, and you can print the findings for your records.


Takeaways from the Security Scan

Input on Mitigating the IBM i's Biggest Vulnerabilities

We’ll walk you through the most common vulnerabilities that exist on the IBM I – such as excessive users with administrative privileges and misconfigured QSECURITY levels. We’ll provide you with detail on where they exist, how attackers go about exploiting them, and your organization’s readiness to defend against them and how it can be improved.

What Your Critical System Values Are Set to and Recommended Settings

The Security Scan will take an inventory of your critical system values and compare them to best practices benchmarks so that you can see which specific settings require remediation.

A PDF Report Summarizing Your Results

Results from the Security Scan will be compiled into a PDF report that offers in-depth evaluation of your security posture in the seven areas of security, including: user authorities, public authority, network access, FTP access, system security, user security, and system auditing.

Personalized Security Plan

One of our IBM i security experts will talk you through your results and provide you with an individualized plan regarding specific items that require remediation as well as which areas of security require attention and the best practices you should employ in addressing them. 

The Security Scan Reviews Critical Areas of IBM i Security

Executive Summary

Card image cap

The Executive Summary ranks the overall condition of your system. Red, yellow, and green indicators compare your system against best practices, along with references to the COBIT framework to which they apply.

Why Should I Run a Security Scan?


The Security Scan examines your system’s vulnerabilities, and suggests steps you can take to protect your critical data.

A Security Scan is:

  • Quick—The Scan runs in just 10 minutes
  • Confidential—Only you see the results
  • Thorough—A Security Advisor helps you understand the current state of your IBM i security
  • Clear—You'll understand where your system is secure and the areas that need work

You’ll find out where your IBM i security currently stands, whether your system is at risk, and how to improve data protection.

View our FAQs >

Is Security Scan Safe?


Before requesting a Security Scan, you might wonder if the scan is safe—or if the Security Scan itself poses a risk to your data. The process is completely secure, and Fortra has performed thousands of scans for organizations around the world. To put your mind at ease, here are some more details about a Security Scan entails.

Security Scan leverages a proprietary, PC-based tool that was written by Fortra specifically for the purpose of this scan. We never request access to any network or server throughout this process and no application data is ever accessed. The program does not make any changes to any servers—except for the program’s installation and subsequent removal.

The Security Scan program runs in just one or two minutes, and it can be run on a production partition without any impact or interruption to business processes.

As a cybersecurity company, Fortra takes the safety and security of your systems very seriously. If you have any questions about how the Security Scan program works, contact us and we can provide more details.

What Do I Get after Running a Security Scan?

Scan Network - IBM i Security Scan

Results of your IBM i Security Scan are compiled immediately and presented for review in an easy-to-understand, browser-based, interactive reporting application. A Fortra Security Adviser can help you interpret the results, and you can save or print the findings for your records.

Security Scan does not leave files on your IBM i. The Security Scan application installs a licensed program to collect security data, but the files are removed upon completion of the analysis or you can remove the program manually using the DLTLICPGM command. You also have seven days after your Security Scan to make configuration changes and rerun the Scan to test your changes.