Policy Auditor (PA) allows you to configure inventory collection scans for separate categories. These categories include applications, registered extensions, operating system, system information, and port/network information. All processed inventory data, including applications that have been removed, are stored in the ePolicy Orchestrator (ePO) database. When a user chooses to run a reset baseline scan for applications on an endpoint, the previously stored application data for that endpoint including what applications have been removed from that system, are deleted from the ePO database.

The change in behavior is due to optimizing the performance of inventory scan result processing on the ePO server. All application data, including removed applications, for assets are stored in the PA_Security_Scan_Applications_Found table in the backend ePO database. When a reset baseline scan for applications is run, the new application inventory results overwrite the previously stored results in the PA_Security_Scan_Applications_Found table.

NOTE: This issue is applicable only for application reset baseline scans. There's no change in the behavior for other scan types such as full, incremental, and sync scans.

You can run a one-time inventory sync scan to make sure that the ePO database and endpoints are in sync with inventory data collection. An Inventory Sync Scan forces the PA Agent installed on the endpoint to resend the scan results that it has already gathered and processed. It doesn't initiate a new scan to gather new data.