Admin Discovery Report

by Josef Weiss
April 29, 2014

This report displays details on Administrator accounts that have been found in your environment via LCE and active Nessus scanning.

Provided are details on:

  • Administrative accounts that have been identified within the environment.
  • Accounts that are listed as being 'admin', 'administrator', or 'root' are displayed, along with any other accounts provisioned on the system.

This can be easily configured to your own environment if required by altering the filter for vulnerability text.

Also reported are Administrative (including non-administrative) accounts that are enabled and whose passwords never expire, and any critical vulnerabilities (if any) that are associated with administrative accounts.

Lastly, systems that contain users that are also members of the Administrators Group are reported.

The report is available in the SecurityCenter Feed, a comprehensive collection of dashboards, reports, assurance report cards and assets. The report can be easily located in the SecurityCenter Feed under the category Threat Detection & Vulnerability Assessments. The report requirements are:

  • SecurityCenter 4.8.0
  • Nessus 5.2.5
  • LCE 4.2.2