OK, I'm new to Nessus and I want to use it to supplement my use of eRetina.
I installed Nessus on my local machine (both server and client) and started
scanning MS machines with the three sections for Windows plugins selected.
However all my attempts at scanning show limited access to the target
machine.  The results show vulnerabilities per port, but doesn't no where
does it show the Microsoft patches I know are missing (ones that eRetina
does find).  

I configured the scan policy to use an account with domain admin privileges,
but I cannot get registry access.  I tried using the local machine admin
account (username: machinename\admin-name), but either I entered it wrong or
it can't get registry access either via Nessus.

The Nessus report has these entries:


                Local Checks Failed

                Synopsis :

                It was not possible to log into the remote host

                Description :

                The credentials provided for the scan did not allow us to
log into the
                remote host.



Also:


                SMB log in

                Synopsis :

                It is possible to log into the remote host.

                Description :

                The remote host is running one of the Microsoft Windows
operating
                systems. It was possible to log into it using one of the
following
                account :

                - NULL session
                - Guest account
                - Given Credentials

And:


                Synopsis :

                Nessus is not able to access the remote Windows Registry.

                Description :

                It was not possible to connect to PIPE\winreg on the remote
host.

                If you intend to use Nessus to perform registry-based
checks, the
                registry checks will not work because the 'Remote Registry
Access'
                service (winreg) has been disabled on the remote host or can
not be
                connected to with the supplied credentials.




I checked my sanity by opening up regedit and confirming I could open the
remote registry using the domain admin credentials.  When I use eRetina,
using the domain account or the local admin account, it scans the registry
with no problems.

I reviewed the manual and searched the archives.  I found the following
discussion which seems to mirror the issue I'm having:
http://mail.nessus.org/mailman/htdig/nessus/2003-October/007431.html, but
this solution didn't work for me.

Any suggestions or am I just missing something and Nessus is functioning
correctly?

Thanks for any help.



reswob
-------------------------------
Motivation is what gets you started, habit is what keeps you going. - Jim
Ryun 


_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus

Reply via email to