Using the Microsoft Baseline Security Analyzer – Part 4 of 5 in Troubleshooting for Windows Vista
Another excellent tool that’s freely available to Windows Vista administrators (or anyone else, for that matter) is the Microsoft Baseline Security Analyzer (MBSA). This tool scans a system and quickly identifies security holes such as missing software patches or accounts with a blank or weak password.
Better yet, it recommends corrective action. The only bad news of sorts is that it’s not built into Windows Vista. You have to download this one from the Microsoft web site. The newest version of this tool at the time of this writing was released in May of 2008, Version 2.1. This updated version provides additional features which are detailed at the Microsoft website.
However, legacy Microsoft products are not supported by MBSA 2.1. Because of this, Microsoft has teamed-up with Shavlik Technologies to offer a free companion tool for MBSA 2.1. This will allow users of MBSA 2.01 to still receive security updates.
For the MBSA 2.01, the install steps are straightforward; just follow the steps in the wizard. During installation, the MBSA places a shortcut on the desktop by default. To launch the tool and perform a scan, follow these steps:
Double-click the desktop icon, and then, from the MBSA home page, choose Scan a Computer. Note here that admins can also use the MBSA to scan multiple computers in a network from a central location. In the Computer to Scan page, you should see the local machine listed if you’ve chosen the “Scan a computer” option. (The other selection produces a page from which you can select a range of machines.) Furthermore, the options in this screen let you specify exactly what components get checked during the scan. Once you verify the machine to scan, click the “Start scan” link. You’ll now see a Scanning page with a progress bar that can take several minutes to complete. When the scan finishes, you’ll see a report screen.
As you can see, this provides extremely valuable information to administrators who are interested in doing everything they can to stop problems before they start. For example, the administrator of this machine has been very diligent about installing necessary software updates, it seems, and has gotten passing grades in most areas of computer security. But the MBSA scan generates a failing grade…how is this possible? The MBSA makes it easy to investigate the exact nature of the failing grade by clicking the “Result details” link, revealing the dialog box. In this case it reveales a very significant (yet usually hidden) threat: local user account passwords are weak, thus generating the failing grade.
If you’d like to get my book “Windows Vista Administration: The Definitive Guide” by Brian Culp, (or any of my other books and tutorials), you can pick it up at my website, www.TheAnswerHub.com or at most major book chains. In addition, I’m always happy to provide additional assistance for free (within reason, mind you…don’t go thinking this is some sort of a free ride). Visit me at my website and submit your questions to me. I’ll get back to you with an answer as soon as possible.
Up Next: in the conclusion of this 5-part series, we’ll be discussing the removal of malicious software using the Malicious Software Removal Tool within Windows Vista.
Brian Culp, MCSE, MCT, is a recognized Microsoft expert who has been teaching and writing about Windows for many years. He is author/coauthor of: seven books including Windows XP Power Tools (Sybex) and Outlook 2003 Bible (Wiley); four MCSE study Guides (McGraw-Hill); and numerous tutorials for the Virtual Training Company. Mr. Culp provides instruction on various administration and networking topics throughout the United States, but can always be reached via his website, http://www.TheAnswerHub.com
