QIDs that require administrator level rights during authenticated scanning

Document created by kb-author-1 Employee on May 19, 2010Last modified by eschamp on Nov 12, 2010
Version 3Show Document
  • View in full screen mode

Issue:

Which QIDs require an administrator level user in order to be posted?

 

Solution:

 

Because of how Operating Systems are designed, there will always be QIDs that QualysGuard is not able to detect unless we have administrator level access.

 

The QIDs that require administrator rights are classified into 4 categories:

-- LSA: 105063, 45032, 90081

-- SAM: 105228, 90266

-- Eventlog: 125007, 125008, 125012, 125013, 125014, 125015, 125029, 125030, 125031, 125009, 125010, 125011, 125028

-- User Profiles: 105099,105100,105101,105102,105103,105104,105105,105106,105107,105108,105109, 105110,105111,105112,105113,105114,105115,105116,105117,105118,105119,105120, 105121,105122,105123,105124,105125,105126,105127,105128,105156,105157,105158, 105159,105160,105161,105162,105163

 

Please note that this list can and does change as our vulnerability signature engineers add new checks. Qualys recommends scanning with administrative accounts to ensure that all appropriate checks are run with the correct level of access.

Attachments

    Outcomes