Account Weakness Report

by David Schwalenberg
April 2, 2014

This report presents vulnerabilities related to accounts and credentials. These vulnerabilities include default accounts, blank passwords, bypassing of authentication, insecure and non-compliant account settings, and more.

The report is available in the SecurityCenter 4.7 Report app feed, an app store of dashboards, reports, and assets. The report requirements are:

  • SecurityCenter 4.7
  • Nessus 5.2.5
  • PVS 4.0.1
  • Compliance data

Chapters

  • Authentication Vulnerabilities - This chapter presents active and passive detections of authentication vulnerabilities in several different areas, including default accounts and credentials, blank passwords, and other authentication vulnerabilities.
  • Windows Account Vulnerabilities - This chapter presents active detections of Windows account vulnerabilities in several different areas, including weak administrative passwords, poor password settings, and potentially vulnerable accounts.
  • Password Compliance Issues - This chapter presents compliance information based on password-related compliance checks, i.e., checks whose names contain the word "password".
  • Account Compliance Issues - This chapter presents compliance information based on account-related compliance checks, i.e., checks whose names contain the word "account".