On Donnerstag, 26. März 2015, Wojtek Swiatek wrote: > I am planning to run OpenVAS in an AD environment and would like to have > credentialed (authenticated) checks. I found at > http://www.greenbone.net/learningcenter/auth_scans.html that "For systems > that are part of a domain the account that should be used should be a > member of the "Domain Administrators" group." > > Is there a specific subset of rights which are needed or is it really a > "Domain Administrator" account which must be used? This poses several > problems in large and distributed systems where there are only a very few > of these accounts and accounts are created with the smallest necessary set > of rights. Is there such a list for OpenVAS?
it is even possible to scan windows authenticated without default Domain Admin. Greenbone is in the process of preparing some guide about it. -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
