Page 1 of 9

Security assessment:

Incomplete Scan (Could not complete one or more requested checks.)

Computer name: IP address: Security report name: Scan date: Catalog synchronization date: Security update catalog: W O RKGRO UP CO M PUTER 192. 168. 136 1. W O RKGRO UP -CO M PUTER ( 1011- 2011 9- AM ) 59 11/ 2011 9: AM 10/ 59

Wi ndow s Ser Updat Ser ces ver e vi

Security Updates
Score Issue Securt iy Updat es Result Cannot scan because t get com put i not assi ar er s gned t a W SUS ser . o ver

Windows Scan Results

Administrative Vulnerabilities Score Issue Passw or d Expiaton r i Result s 4 expii passw or rng ds. Som e user account ( of 5) have nonUser Adm i st at ni r or Guest Hom eGr oupUser $ user

Wi ndow s Fiew al r l

Wi ndow s Fiew al i enabl and has exceptons confgur W i r ls ed i i ed. ndow s Fiew al i enabl on al net or r ls ed l w k connectons. i Connection Name Firewall Exceptions Al Connectons l i LocalAr Connecton ea i Team Vi er VPN ew VM w ar Net or Adapt VM net e w k er 1 VM w ar Net or Adapt VM net e w k er 8 On On On On On Por s,Pr am s,Ser ces t ogr vi Por s*,Pr am s*,Ser ces* t ogr vi Por s*,Pr am s*,Ser ces* t ogr vi Por s*,Pr am s*,Ser ces* t ogr vi Por s*,Pr am s*,Ser ces* t ogr vi

I ncom pl e et Updat es LocalAccount Passw or Test d

No i ncom pl e sof w ar updat i alatons w er f et t e e nst l i e ound.

Som e user account ( of 5) have bl s 2 ank or si pl passw or or coul not be anal m e ds, d yzed. User Weak Password Locked Out Adm i st at ni r or Guest Hom eGr oupUser $ __vm w ar e_user __ user W eak W eak -

Disabled Di ed sabl Di ed sabl -

Fie Syst l em

5) e ng he ie em Al har drves ( ar usi t NTFS fl syst . l d i Drive Letter C: D: F: G: H:

File System NTFS NTFS NTFS NTFS NTFS

file:///C:/Program%20Files/Microsoft%20Baseline%20Security%20Analyzer%202/Pr... 11/10/2011

Page 2 of 9

Guest Account

s sabl hi er The Guest account i di ed on t s com put .

Aut ogon ol

Aut ogon i not confgur on t s com put . ol s i ed hi er

Rest i rct Anonym ous Adm i st at s ni r or

er s opery r rctng anonym ous access. l est i i Com put i pr

e han 2 Adm i st at s w er f ni r or e ound on t s com put . hi er No m or t User Adm i st at ni r or user

Aut atc om i Updat es

Updat ar aut atcaly dow nl es e om i l oaded and i aled on t s com put . nst l hi er

Additional System Information Score Issue Wi ndow s Ver on si Audii tng Result Com put i r er s unni M i osof W i ng cr t ndow s 7.

Neiher Logon Success nor Logon Faiur audii ar enabl Enabl audii and t n on audii f t l e tng e ed. e tng ur tng or s ogon and l ogof .Be sur t m onior your event l t w at f unaut i access. f e o t og o ch or horzed specii event such as l fc

Shar es

er 10 shar s) ar pr e( e esent on your com put . Share Directory Share ACL Canon M P490 seres i Canon i er Local O nl spl y M P490 seresPrnt , i Prnt i er ADM I N$ C: W i \ ndow s

Directory ACL

Prnt Q ueue Shar Diect y ACL can not be r i e r or ead.

Adm i Shar n e

NT SERVI Tr edI aler- F,NT CE\ ust nst l AUTHO RI SYSTEM - RW XD, TY\ ni r or LTI User s BUI N\ LTI Adm i st at s - RW XD,BUI N\ RX BUI N\ LTI Adm i st at s - F,NT ni r or LTI User - RX,NT s AUTHO RI SYSTEM - F,BUI N\ TY\ AUTHO RI Aut TY\ hentcat User - D i ed s BUI N\ LTI Adm i st at s - F,NT ni r or AUTHO RI SYSTEM - F,NT TY\ i ed s AUTHO RI Aut TY\ hentcat User - RW XD, BUI N\ LTI User - RX s BUI N\ LTI Adm i st at s - F,NT ni r or AUTHO RI SYSTEM - F,NT TY\ AUTHO RI Aut TY\ hentcat User - RW XD, i ed s BUI N\ LTI User - RX s BUI N\ LTI Adm i st at s - F,NT ni r or AUTHO RI SYSTEM - F,NT TY\ AUTHO RI Aut TY\ hentcat User - RW XD, i ed s s BUI N\ LTI User - RX BUI N\ LTI Adm i st at s - F,NT ni r or AUTHO RI SYSTEM - F,NT TY\ i ed s AUTHO RI Aut TY\ hentcat User - RW XD, BUI N\ LTI User - RX s

C$

C: \

Adm i Shar n e

D$

D: \

Adm i Shar n e

F$

F: \

Adm i Shar n e

G$

G: \

Adm i Shar n e

H$

H: \

Adm i Shar n e

Hr s m

D: Hr s \ m

Adm i st at s - F,CO M PUTER\ ni r or user- F,CO M PUTER\ Hom eUser - F, s Ever yone - F BUI N\ LTI Adm i st at s - F,NT ni r or AUTHO RI SYSTEM - F TY\ Adm i st at s - F,NT AUTHO RI SYSTEM - F, ni r or TY\ BUI N\ LTI Adm i st at s - F,BUI N\ Ever yone - F ni r or LTI User - RX, s yone - RX Ever Ever yone - R, NT AUTHO RI SYSTEM - F, TY\

User s

C: User \ s

prnt i $

C: W i \ ndow s\ syst 32 em

file:///C:/Program%20Files/Microsoft%20Baseline%20Security%20Analyzer%202/Pr... 11/10/2011

Page 3 of 9

\ spooldrver \ i s

Adm i st at s - F BUI N\ ni r or LTI Adm i st at s - F,Ever ni r or yone - RX

Ser ces vi

Som e pot i l unnecessar ser ces ar i aled. entaly y vi e nst l Service Tel net W ord W i W eb Publshi Ser ce l de i ng vi

State St opped Runni ng

Internet Information Services (IIS) Scan Results

Administrative Vulnerabilities Score Issue Sam pl e Applcatons i i I SAdm i I n Vit r ual Diect y r or Par Pat ent hs Result I S sam pl applcatons ar not i aled. I e i i e nst l

r ual r or s esent . I SADM PW D vit diect y i not pr I

Par pat ar not enabl ent hs e ed.

M SADC and Scrpt Vit i s r ual Diect i r ores I S Lockdow n I Tool

i s r ual r ores e esent . The M SADC and Scrpt vit diect i ar not pr

The I S Lockdow n t w as devel I ool oped f I S 4. 5. and 5. and i not needed f new W i or I 0, 0, 1, s or ndow s Ser ver nst l i unni I S 6. ng I 0. 2003 i alatons r

Additional System Information Score Issue I S Loggi I ng Enabl ed Result t e ng he ecom m ended l oggi optons. ng i Al w eb and FTP sies ar usi t r l

SQL Server Scan Results: Instance (default)

Administrative Vulnerabilities Score Issue Result

Passw or Polcy Enabl passw or expiaton f t SQ L ser account d i e d r i or he ver s.

SQ L Ser / SDE ver M Securt M ode iy Sysadm i ns

SQ L Ser and/ M SDE aut ver or hentcaton m ode i set t SQ L Ser and/ M SDE and W i i i s o ver or ndow s ( i M xed M ode) .

s n ol e esent . M or t e han 2 m em ber of sysadm i r e ar pr

Ser ce vi Account s

SQ L Ser ,SQ L Ser Agent M SDE and/ M SDE Agent ser ce account shoul not be m em ber of t l ver ver , or vi s d s he ocal Adm i st at s gr ni r or oup or r as Local em . un Syst Instance Service Account Issue ( aul) def t ( aul) def t M SSQ LSer ver SQ LSer Agent ver SYSTEM SYSTEM Local em account Syst . Local em account Syst .

Cm dExec r e ol

Cm dExec i r rct t sysadm i onl s est i ed o n y.

file:///C:/Program%20Files/Microsoft%20Baseline%20Security%20Analyzer%202/Pr... 11/10/2011

Page 4 of 9

Regi r st y Per i ons m ssi Fol der Per i ons m ssi

yone gr oup does not have m or t e han Read access t t SQ L Ser and/ M SDE r st y keys. o he ver or egi r The Ever

Instance ( aul) def t

Folder I er er or nt nal r .

User -

Sysadm i r e n ol m em ber s Guest Account

ni r or oup i not par of sysadm i r e. s t n ol BUI N Adm i st at s gr LTI

s ed n he abases. The Guest account i not enabl i any of t dat

SSI Rol S es

The BUI N Adm i does not bel LTI n ong t t SSI r es. o he S ol

Sysdt og sl

sl abl st n he er abases Sysdt ogs90 t e does not exi i t M ast or M SDB dat

SQL Server Scan Results: Instance MSAS10.MSSQLSERVER

Administrative Vulnerabilities Score Issue SQ L Ser / SDE ver M Securt M ode iy Cm dExec r e ol Result ver or hentcaton m ode i set t SQ L Ser and/ M SDE and W i i i s o ver or ndow s ( i M xed M ode) . SQ L Ser and/ M SDE aut

s est i ed o n y. Cm dExec i r rct t sysadm i onl

Regi r st y Per i ons m ssi Fol der Per i ons m ssi

The Ever yone gr oup does not have m or t e han Read access t t SQ L Ser and/ M SDE r st y keys. o he ver or egi r

Instance M SAS10. SSQ LSERVER M

Folder I er er or nt nal r .

User -

Ser ce vi Account s

SQ L Ser ,SQ L Ser Agent M SDE and/ M SDE Agent ser ce account ar not m em ber of t l ver ver , or vi s e s he ocal ni r or oup and do not r as Local em . un Syst Adm i st at s gr

Sysadm i r e n ol m em ber s Guest Account

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

[ DBNETLI [ B] ConnectonO pen ( i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed.

Sysadm i ns

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

Passw or Polcy [ d i i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. DBNETLI [ B] ConnectonO pen (

SSI Rol S es

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

Sysdt og sl

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

SQL Server Scan Results: Instance MSRS10.MSSQLSERVER

Administrative Vulnerabilities

file:///C:/Program%20Files/Microsoft%20Baseline%20Security%20Analyzer%202/Pr... 11/10/2011

Page 5 of 9

Score Issue SQ L Ser / SDE ver M Securt M ode iy Cm dExec r e ol

Result ver or hentcaton m ode i set t SQ L Ser and/ M SDE and W i i i s o ver or ndow s ( i M xed M ode) . SQ L Ser and/ M SDE aut

s est i ed o n y. Cm dExec i r rct t sysadm i onl

Regi r st y Per i ons m ssi Fol der Per i ons m ssi

The Ever yone gr oup does not have m or t e han Read access t t SQ L Ser and/ M SDE r st y keys. o he ver or egi r

Instance M SRS10. SSQ LSERVER M

Folder I er er or nt nal r .

User -

Ser ce vi Account s

SQ L Ser ,SQ L Ser Agent M SDE and/ M SDE Agent ser ce account ar not m em ber of t l ver ver , or vi s e s he ocal Adm i st at s gr ni r or oup and do not r as Local em . un Syst

Sysadm i r e n ol m em ber s Guest Account

[ DBNETLI [ B] ConnectonO pen ( i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed.

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

Sysadm i ns

[ DBNETLI [ B] ConnectonO pen ( i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed.

Passw or Polcy [ d i DBNETLI [ B] ConnectonO pen ( i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed.

SSI Rol S es

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

Sysdt og sl

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

SQL Server Scan Results: Instance MSSQL10.MSSQLSERVER

Administrative Vulnerabilities Score Issue Cm dExec r e ol Result e ng em e er he e st y vi hat er d Er or r r eadi r st y.I you ar scanni a r ot com put t Rem ot Regi r ser ce on t com put shoul ng egi r f ( 13)

Fol der Per i ons on t SQ L Ser and/ M SDE i alaton f der ar not set pr m ssi he ver or nst l i ol s e opery. l Per i ons Instance m ssi Folder User \ ogr l M cr t \ CREATO R O W NER M SSQ L10. SSQ LSERVERC: Pr am Fies\ i osof SQ L M Ser \ SSQ L10. SSQ LSERVER\ SSQ L\ nn ver M M M Bi \ ogr l M cr t BUI N\ LTI User s M SSQ L10. SSQ LSERVERC: Pr am Fies\ i osof SQ L M Ser \ SSQ L10. SSQ LSERVER\ SSQ L\ nn ver M M M Bi M SSQ L10. SSQ LSERVERC: Pr am Fies\ i osof SQ L M \ ogr l M cr t CO M PUTER\ LSer M SSQ LUser SQ ver $Rout $M er Ser \ SSQ L10. SSQ LSERVER\ SSQ L\ nn ver M M M Bi M SSQ L10. SSQ LSERVERC: Pr am Fies\ i osof SQ L M \ ogr l M cr t \ CREATO R O W NER Ser \ SSQ L10. SSQ LSERVER\ SSQ L\ a ver M M M Dat \ ogr l M cr t CO M PUTER\ LSer M SSQ LUser SQ ver $Rout $M er M SSQ L10. SSQ LSERVERC: Pr am Fies\ i osof SQ L M Ser \ SSQ L10. SSQ LSERVER\ SSQ L\ a ver M M M Dat

SQ L SQ L Ser and/ M SDE aut ver or hentcaton m ode i set t SQ L Ser and/ M SDE and W i i i s o ver or ndow s ( i M xed M ode) . Ser / SDE ver M Securt iy M ode Regi r st y yone gr oup does not have m or t e han Read access t t SQ L Ser and/ M SDE r st y keys. o he ver or egi r The Ever Per i ons m ssi

file:///C:/Program%20Files/Microsoft%20Baseline%20Security%20Analyzer%202/Pr... 11/10/2011

Page 6 of 9

Ser ce vi Account s

SQ L Ser ,SQ L Ser Agent M SDE and/ M SDE Agent ser ce account ar not m em ber of t l ver ver , or vi s e s he ocalAdm i st a ni r and do not r as Local em . un Syst

Sysadm i n r e ol m em ber s Guest Account Sysadm i ns

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

[ DBNETLI [ B] ConnectonO pen ( i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed.

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

Passw or d Polcy i SSI Rol S es

[ DBNETLI [ B] ConnectonO pen ( i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed.

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

Sysdt og sl

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

SQL Server Scan Results: Instance MSSQL10.SQLEXPRESS

Administrative Vulnerabilities Score Issue Cm dExec r e ol Result Er or r r eadi r st y.I you ar scanni a r ot com put t Rem ot Regi r ser ce on t com put shoul ng egi r f e ng em e er he e st y vi hat er d enabl ( ed. 13)

Fol der Per i ons on t SQ L Ser and/ M SDE i alaton f der ar not set pr m ssi he ver or nst l i ol s e opery. l Per i ons Instance m ssi Folder User \ ogr l M cr t \ CREATO R O W NER M SSQ L10. LEXPRESSC: Pr am Fies\ i osof SQ L SQ Ser \ SSQ L10. LEXPRESS\ SSQ L\ nn ver M SQ M Bi s M SSQ L10. LEXPRESSC: Pr am Fies\ i osof SQ L SQ \ ogr l M cr t BUI N\ LTI User Ser \ SSQ L10. LEXPRESS\ SSQ L\ nn ver M SQ M Bi M SSQ L10. LEXPRESSC: Pr am Fies\ i osof SQ L SQ \ ogr l M cr t CO M PUTER\ LSer M SSQ LUser SQ ver $Rout $SQ LE er Ser \ SSQ L10. LEXPRESS\ SSQ L\ nn ver M SQ M Bi M SSQ L10. LEXPRESSC: Pr am Fies\ i osof SQ L SQ \ ogr l M cr t \ CREATO R O W NER Ser \ SSQ L10. LEXPRESS\ SSQ L\ a ver M SQ M Dat \ ogr l M cr t SQ ver $Rout $SQ LE er M SSQ L10. LEXPRESSC: Pr am Fies\ i osof SQ L SQ CO M PUTER\ LSer M SSQ LUser Ser \ SSQ L10. LEXPRESS\ SSQ L\ a ver M SQ M Dat

SQ L SQ L Ser and/ M SDE aut ver or hentcaton m ode i set t W i i i s o ndow s O nl y. Ser / SDE ver M Securt iy M ode Regi r st y The Ever yone gr oup does not have m or t e han Read access t t SQ L Ser and/ M SDE r st y keys. o he ver or egi r Per i ons m ssi Ser ce vi Account s SQ L Ser ,SQ L Ser Agent M SDE and/ M SDE Agent ser ce account ar not m em ber of t l ver ver , or vi s e s he ocalAdm i st a ni r gr oup and do not r as Local em . un Syst

Sysadm i n r e ol m em ber s Guest Account Sysadm i ns

[ DBNETLI [ B] ConnectonO pen ( i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed.

[ DBNETLI [ B] ConnectonO pen ( i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed.

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

file:///C:/Program%20Files/Microsoft%20Baseline%20Security%20Analyzer%202/Pr... 11/10/2011

Page 7 of 9

Passw or d Polcy i SSI Rol S es

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

[ DBNETLI [ B] ConnectonO pen ( i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed.

Sysdt og sl

i Connect ) . SQ L Ser does not exi or access deni ( )] ver st ed. [ DBNETLI [ B] ConnectonO pen (

SQL Server Scan Results: Instance SQLEXPRESS

Administrative Vulnerabilities Score Issue Ser ce vi Account s Result SQ L Ser ,SQ L Ser Agent M SDE and/ M SDE Agent ser ce account shoul not be m em ber of t l ver ver , or vi s d s he ocal ni r or oup or r as Local em . un Syst Adm i st at s gr Instance Service Account Issue SQ LEXPRESSM SSQ L$SQ LEXPRESS NT AUTHO RI NETW O RK TY\ SERVI CE Thi i a Dom ai Account Baselne Securt ss n . i iy Anal yzer cannot det m i w het i bel er ne her t ongs t t Dom ai Adm i gr o he n ns oup due t t o he f l i er or 1212 The f m at of t olow ng r : or he specii dom ai nam e i i i . fed n s nvald. Thi i a Dom ai Account Baselne Securt ss n . i iy Anal yzer cannot det m i w het i bel er ne her t ongs t t Dom ai Adm i gr o he n ns oup due t t o he f l i er or 1212 The f m at of t olow ng r : or he specii dom ai nam e i i i . fed n s nvald.

SQ LEXPRESSSQ LAgent $SQ LEXPRESSNT AUTHO RI NETW O RK TY\ SERVI CE

Passw or Polcy Enabl passw or expiaton f t SQ L ser account d i e d r i or he ver s.

SQ L Ser / SDE ver M Securt M ode iy Sysadm i ns

ver or hentcaton m ode i set t SQ L Ser and/ M SDE and W i i i s o ver or ndow s ( i M xed M ode) . SQ L Ser and/ M SDE aut

s n ol e esent . M or t e han 2 m em ber of sysadm i r e ar pr

Cm dExec r e ol

Cm dExec i r rct t sysadm i onl s est i ed o n y.

Regi r st y Per i ons m ssi Fol der Per i ons m ssi

The Ever yone gr oup does not have m or t e han Read access t t SQ L Ser and/ M SDE r st y keys. o he ver or egi r

Instance SQ LEXPRESS

Folder I er er or nt nal r .

User -

Sysadm i r e n ol m em ber s Guest Account

BUI N Adm i st at s gr LTI ni r or oup i not par of sysadm i r e. s t n ol

The Guest account i not enabl i any of t dat s ed n he abases.

SSI Rol S es

The BUI N Adm i does not bel LTI n ong t t SSI r es. o he S ol

Sysdt og sl

sl abl st n he er abases Sysdt ogs90 t e does not exi i t M ast or M SDB dat

SQL Server Scan Results: Instance (default) (32-bit)

Administrative Vulnerabilities Score Issue Result

file:///C:/Program%20Files/Microsoft%20Baseline%20Security%20Analyzer%202/Pr... 11/10/2011

Page 8 of 9

Passw or Polcy Enabl passw or expiaton f t SQ L ser account d i e d r i or he ver s.

SQ L Ser / SDE ver M Securt M ode iy Sysadm i ns

. SQ L Ser and/ M SDE aut ver or hentcaton m ode i set t SQ L Ser and/ M SDE and W i i i s o ver or ndow s ( i M xed M ode)

s n ol e esent . M or t e han 2 m em ber of sysadm i r e ar pr

Ser ce vi Account s

SQ L Ser ,SQ L Ser Agent M SDE and/ M SDE Agent ser ce account shoul not be m em ber of t l ver ver , or vi s d s he ocal Adm i st at s gr ni r or oup or r as Local em . un Syst Instance Service Account Issue ( aul) ( bi) def t 32- t ( aul) ( bi) def t 32- t M SSQ LSer ver SQ LSer Agent ver SYSTEM SYSTEM Local em account Syst . Local em account Syst .

Cm dExec r e ol

s est i ed o n y. Cm dExec i r rct t sysadm i onl

Regi r st y Per i ons m ssi Fol der Per i ons m ssi

The Ever yone gr oup does not have m or t e han Read access t t SQ L Ser and/ M SDE r st y keys. o he ver or egi r

Instance ( aul) ( bi) def t 32- t

Folder I er er or nt nal r .

User -

Sysadm i r e n ol m em ber s Guest Account

BUI N Adm i st at s gr LTI ni r or oup i not par of sysadm i r e. s t n ol

s ed n he abases. The Guest account i not enabl i any of t dat

SSI Rol S es

n ong t t SSI r es. o he S ol The BUI N Adm i does not bel LTI

Sysdt og sl

sl abl st n he er abases Sysdt ogs90 t e does not exi i t M ast or M SDB dat

SQL Server Scan Results: Instance SQLEXPRESS (32-bit)

Administrative Vulnerabilities Score Issue Ser ce vi Account s Result SQ L Ser ,SQ L Ser Agent M SDE and/ M SDE Agent ser ce account shoul not be m em ber of t l ver ver , or vi s d s he ocal Adm i st at s gr ni r or oup or r as Local em . un Syst Instance Service Account Issue SQ LEXPRESS M SSQ L$SQ LEXPRESS ( bi) 32- t NT AUTHO RI NETW O RK TY\ SERVI CE Thi i a Dom ai Account Baselne Securt ss n . i iy Anal yzer cannot det m i w het i bel er ne her t ongs t t Dom ai Adm i gr o he n ns oup due t t o he f l i er or 1212 The f m at of t olow ng r : or he specii dom ai nam e i i i . fed n s nvald. Thi i a Dom ai Account Baselne Securt ss n . i iy Anal yzer cannot det m i w het i bel er ne her t ongs t t Dom ai Adm i gr o he n ns oup due t t o he f l i er or 1212 The f m at of t olow ng r : or he specii dom ai nam e i i i . fed n s nvald.

SQ LEXPRESS SQ LAgent $SQ LEXPRESSNT AUTHO RI NETW O RK TY\ ( bi) 32- t SERVI CE

Passw or Polcy Enabl passw or expiaton f t SQ L ser account d i e d r i or he ver s.

SQ L Ser / SDE ver M Securt M ode iy

. SQ L Ser and/ M SDE aut ver or hentcaton m ode i set t SQ L Ser and/ M SDE and W i i i s o ver or ndow s ( i M xed M ode)

file:///C:/Program%20Files/Microsoft%20Baseline%20Security%20Analyzer%202/Pr... 11/10/2011

Page 9 of 9

Sysadm i ns

s n ol e esent . M or t e han 2 m em ber of sysadm i r e ar pr

Cm dExec r e ol

Cm dExec i r rct t sysadm i onl s est i ed o n y.

Regi r st y Per i ons m ssi Fol der Per i ons m ssi

The Ever yone gr oup does not have m or t e han Read access t t SQ L Ser and/ M SDE r st y keys. o he ver or egi r

Instance SQ LEXPRESS ( bi) 32- t

Folder I er er or nt nal r .

User -

Sysadm i r e n ol m em ber s Guest Account

ni r or oup i not par of sysadm i r e. s t n ol BUI N Adm i st at s gr LTI

The Guest account i not enabl i any of t dat s ed n he abases.

SSI Rol S es

n ong t t SSI r es. o he S ol The BUI N Adm i does not bel LTI

Sysdt og sl

sl abl st n he er abases Sysdt ogs90 t e does not exi i t M ast or M SDB dat

Desktop Application Scan Results

Administrative Vulnerabilities Score Issue I Zones E Result nt net or e tngs f al user or l s. I er Expl er zones have secur set i

M acr Securt o iy

No suppor ed M i osof O f i pr t cr t fce oduct ar i aled. s e nst l

file:///C:/Program%20Files/Microsoft%20Baseline%20Security%20Analyzer%202/Pr... 11/10/2011