You will need a Nessus Professional Feed (I think they run about $1200 a year last time i looked) and then you can download from the nessus support portal special .audit files for checking what your after.
Zate On Wed, Jan 19, 2011 at 11:21 AM, Albert R. Campa <[email protected]> wrote: > Here is an older blog post on how its done. > > http://blog.tenablesecurity.com/2008/02/testing-windows.html > > > __________________________________ > Albert R. Campa > > > On Wed, Jan 19, 2011 at 10:19 AM, Albert R. Campa <[email protected]> wrote: >> >> Yes you can do it with Nessus. Using a FDCC audit file. >> >> __________________________________ >> Albert R. Campa >> >> >> On Wed, Jan 19, 2011 at 9:20 AM, Bigger Thomas <[email protected]> wrote: >>> >>> I have a machine in my enterprise that needs to be proven to be NIST FDCC >>> compliant. I was tooling around trying to find scanners that could do this >>> and most of the literature points to NexPose and their products. I figured >>> there must be a way to do this with Nessus, but I am still pretty new to >>> anything but basic vulnerability scanning using Nessus. What I need to do >>> is provide a report showing that it is in compliance, does anyone know of a >>> way to do this using Nessus? Thanks for any help you can provide. >>> >>> >>> _______________________________________________ >>> Pauldotcom mailing list >>> [email protected] >>> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom >>> Main Web Site: http://pauldotcom.com >> > > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
