Archive for August, 2010


Using Microsoft Baseline Security Analyzer

August 1, 2010

Microsoft Baseline Security Analyzer (MBSA) v. 2.0 is a tool that identifies common security misconfigurations and missing security updates (hot fixes) on computer systems. MBSA includes a Graphical User Interface (GUI) and Command Line Interface (CLI) that administrators can use to scan local or remote Windows systems and that provides security recommendations and specific remediation guidance. Get MBSA from Microsoft at

After MBSA is downloaded and installed, use the following steps to run a local or remote system scan:

1. From the Start > All Programs menu, click Microsoft Baseline Security Analyzer 2.0. At the welcome screen, select one of the scanning options to scan a single computer, multiple computers, or view existing security reports.

2. Configure computer and scanning options. If you’re unsure, use the default settings. Click Start Scan to commence security scanning.

3. Review the scan report details screen. Security issues are categorized in various levels: a red X indicates a critical issue; a yellow X indicates a non-critical issue; a green checkmark indicates a passed test with no issues; and a blue asterisk indicates a best-practice. For easier reading, administrators can print out a hard copy of the report using the print option on the left side of the screen.

4. Update security vulnerabilities as necessary.