No of visitors who read this post: 1027
Type: Question
No votes yet

Can we use Microsoft Baseline Security Analyzer (MBSA) in identifying if a network is secured? Can someone please give me some ideas? Thank you.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

# Comment Id: 40799

Microsoft Baseline Security Analyzer (MBSA) in identifying if a network is secured. And you can use it without any worries.The Microsoft Baseline Security Analyzer (MBSA) is a security assessment tool for Windows. It scans for common misconfigurations in the operating system, IIS, SQL. MBSA check the operating system and other installed components for example Internet Information Services (IIS), SQL Server for security configurations with respect to recommended security. MBSA requires a secure connection through the Windows Firewall. MBSA can check for missing security updates for Windows, Internet Explorer, Exchange, Microsoft Office, Microsoft Virtual Machine, BizTalk Server and Host Integration Server.

# Comment Id: 155776

MBSA stands for Microsoft Baseline Security Analyzer. It is a software tool released by Microsoft to find out the security status by evaluating less-protected security settings and missing security updates in Microsoft Windows, Windows components like Microsoft Internet Explorer, IIS web server including products Microsoft SQL Server and Microsoft Office macro settings.

Security updates are determined using the existing version of MBSA via Windows Update Agent which is already available on computers running Microsoft Windows since Windows 2000 Service Pack 3. The less-secure settings are called VA checks or Vulnerability Assessment checks. They are evaluated based on a hard-coded set of file and registry checks.

The MBSA or the Microsoft Baseline Security Analyzer checks for existing updates to the operating system, MSXML or Microsoft XML Parser, MDAC or Microsoft Data Access Components, Microsoft .NET Framework, and SQL Server. It also examines a computer for any unprotected configuration settings. Whenever it checks for Windows service packs and patches, Windows components such as COM+ and IIS or Internet Information Services are added in the scan.

The required updates are verified by means of WSUS or the Windows Server Update Services and Microsoft Update. To download MBSA with support for Windows Server 2012, Windows Server 2012 R2, Windows 8, and Windows 8.1, visit Microsoft Baseline Security Analyzer 2.3.

Sharath Reddy