Updated Windows Compliance Auditing

Previously we've blogged about upcoming changes to how Nessus Direct Feed and Security Center users perform configuration audits of Windows servers and desktops. Version 2 of the Windows Compliance configuration audit plugin is now available.

Nessus Direct Feed and Security Center users should log into the Tenable Support Portal and obtain version 2 of any published audit policies. Nessus users should then update their plugins and make use of these new policies in their Windows configuration audits. Security Center users should place any updated policies in the /opt/sc3/admin/nasl directory. The new version 2 policies all have a trailing "_v2" in their name. Make sure to specify any updated audit policies in your Nessus or Security Center vulnerability scan policies.

If you've written a custom audit policy for Windows systems, converting it to be compatible with the new features of version 2 has been discussed here. Our previous link also includes a technical list of all new keywords and types of audits available in version 2.

Direct Feed and Security Center users performing Windows content audits or UNIX configuration audits do not need to modify any other polices. Only Windows configuration auditing has been effected at this time.