In addition to executing scans through a schedule, you can do so at any time through the Admin Client.
In the Admin Client, click the Target Driven tab.
Click Policies.
Right-click the name of the Security policy and click Execute > Security Scan.
When the confirmation screen appears, click Yes.
The target path for the selected Security policy is scanned for security changes. If changes are determined, an email is sent to the users specified in the Email Recipients field of the policy.
A sample email is shown below:
Depending on the policy type, the email specifies that access permissions to a High-Value Target have been changed.