Microsoft Windows 'Account Operators' Group User List

info Nessus Plugin ID 10901

Synopsis

There is at least one user in the 'Account Operators' group.

Description

Using the supplied credentials, it is possible to extract the member list of the 'Account Operators' group. Members of this group can create or modify local user accounts but can not modify or create administrative accounts or edit user rights.

Solution

Verify that each member of the group should have this type of access.

Plugin Details

Severity: Info

ID: 10901

File Name: smb_group_account_op.nasl

Version: 1.19

Type: local

Agent: windows

Published: 3/15/2002

Updated: 5/16/2018

Supported Sensors: Nessus

Vulnerability Information

Required KB Items: SMB/name, SMB/login, SMB/password, SMB/transport