Using Microsoft Baseline Security Analyzer

Microsoft Baseline Security Analyzer (MBSA) v. 2.0 is a tool that identifies common security misconfigurations and missing security updates (hot fixes) on computer systems. MBSA includes a GUI and Command Line Interface (CLI) that administrators can use to scan local or remote Windows systems and that provides security recommendations and specific remediation guidance. Get MBSA from Microsoft at http://www.microsoft.com/technet/security/tools/mbsahome.mspx.

After MBSA is downloaded and installed, use the following steps to run a local or remote system scan:

1.	From the Start, All Programs menu, click Microsoft Baseline Security Analyzer 2.0. At the welcome screen, select one of the scanning options to scan a single computer, multiple computers, or view existing security reports.
2.	Configure computer and scanning options. If you're unsure, use the default settings. Click Start Scan to commence security scanning.
3.	Review the scan report details screen as shown in Figure 9.3. Security issues are categorized in various levels: a red X indicates a critical issue, a yellow X indicates a noncritical issue, a green check mark indicates a passed test with no issues, and a blue asterisk indicates a best practice. For easier reading, administrators can print out a hard copy of the report using the print option on the left side of the screen. Figure 9.3. Reviewing security vulnerabilities reported by Microsoft Baseline Security Analyzer.
4.	Update security vulnerabilities as necessary.

Figure 9.3. Reviewing security vulnerabilities reported by Microsoft Baseline Security Analyzer.