Detailed scan results: Analyzing users and groups

Rogue, obsolete or default user accounts can be exploited by malicious or unauthorized users to gain access to restricted areas of your IT infrastructure. The ‘Guest’ account for example is just one example of commonly exploited accounts – reason being that more often than not, this account is left configured within a system and even worse without changing the default password settings. Malicious users have developed applications which can automatically re-enable the ‘Guest’ account and grant it administrative rights; Empowering users to gain access to sensitive areas of the corporate IT infrastructure.

GFI LANguard N.S.S. collects information on all user accounts and user groups currently enabled on scanned targets. This information is organized in the scan results under 2 separated nodes. To access the list of user accounts identified during on a target computer, click on the Users sub-node. Use the information enumerated in this sub-node to inspect the access privileges assigned to each user account. To gain access to the list of user-groups configured on a target computer, click on the Groups sub-node.

NOTE: Users should not use local accounts to log on to a network computer. For better security, users should log on to network computers using a ‘Domain’ or an ‘Active Directory’ account.