IS3340 – Window Security
Unit 5 Assignment 2_Security Audit Procedure Guide 01/12/15
1) Acquire and Install MBSA
Download MBSA. Download MBSA from the MBSA home page, and then install it to the default directory.
Updates for MBSA. If both computer you will be scanning and the computer with MBSA installed have internet access, the latest security catalog (.cab file), authentication files, and WUA installer files will be automatically downloaded, if needed. If either the target computer or the computer with MBSA installed does not have internet access, download the following files and place them in the C:\Documents and Settings\>username>Local Settings\Application Data\Microsoft\MBSA\2.0\Cache/ directory on the computer that is performing the scan.
2) Scan Computers
Run MBSA and clear the Check for security updates check box when performing the scan.
Using the Graphical Interface tool
The following procedure describes how to use the MBSA GUI tool.
To use the MSBA GUI tool to scan updates and patches
1. On the program menu, click Microsoft Baseline Security Analyzer.
2. Click Scan the computer.
3. Make sure that the following options are not selected, and then click Strat scan.
Check for Windows administrative vulnerabilities
Check for weak passwords
Check for IIS administrative Vulnerabilities
Using the Graphical Interface Tool
1. On the Programs menu, click Microsoft Baseline Security Analyzer.
2. Click Scan a computer.
3. Make sure the following options are not selected, and then click Start scan.
Check for Windows administrative vulnerabilities
Check for weak passwords
Check for IIS administrative vulnerabilities
Check for SQL administrative vulnerabilities
3) Review scan results
Analyzing the Output
A report file is generated in the profile directory of the logged in user...