Admin Discovery Report

by Josef Weiss
April 29, 2014

This report displays details on Administrator accounts that have been found in your environment via LCE and active Nessus scanning.

Provided are details on:

  • Administrative accounts that have been identified within the environment.
  • Accounts that are listed as being 'admin', 'administrator', or 'root' are displayed, along with any other accounts provisioned on the system.

This can be easily configured to your own environment if required by altering the filter for vulnerability text.

Also reported are Administrative (including non-administrative) accounts that are enabled and whose passwords never expire, and any critical vulnerabilities (if any) that are associated with administrative accounts.

Lastly, systems that contain users that are also members of the Administrators Group are reported.

The report and its components are available in the SecurityCenter Feed, an app store of dashboards, reports, and assets. The report requirements are:

  • SecurityCenter 4.8.0
  • Nessus 5.2.5
  • LCE 4.2.2