it saves them as separate Microsoft Baseline Security Analyzer reports and the only MBSA automatically saves the reports in XML files there’s no “export”. I ran the MBSA tool to get a report of what security updates are loaded on a remote computer. Now I want to print this report out, but there is nothing within the gui. Use the Task Query Baseline Security (MBSA) to identify various risks on The initial report shows the results per issue. Saving and exporting information.

Author: Gubar Mikakora
Country: Guatemala
Language: English (Spanish)
Genre: Health and Food
Published (Last): 10 August 2012
Pages: 186
PDF File Size: 13.79 Mb
ePub File Size: 19.40 Mb
ISBN: 750-9-78350-755-2
Downloads: 89073
Price: Free* [*Free Regsitration Required]
Uploader: JoJotaxe

Help using the Microsoft Baseline Security Analyzer (MBSA)

A red X expprt an item that needs to be fixed. It also contains links that provide more detailed information, such as What was scannedResult Details, and How to Correct this.

The MBSA scan summary is organized into sections. The more often you run the scan, the less often you will be prompted to fix something. This report file is stored on the computer from which you ran the MBSA tool. The MBS Setup window displays. Click the Install button to start the installation. Running updates on your computer will fix these problems. Select a destination for the installation and click Next. Once you have reviewed the report and corrected repkrt the vulnerabilities, rerun MBSA to check that there are no more additional vulnerabilities that exist on your system.

A green checkmark is used when a check passes that is, no issue was found for that particular check. If either of these services is unavailable or disabled, the scan results will indicate this. In order to perform a scan you MUST have administrator reoort. MBSA will download the list of latest security catalogue from Microsoft and begin the mnsa. Skip to main content. The Result details window contains details about the vulnerability in this case, weak passwords.


For the security update checksa red exclamation mark is used when MBSA confirms that a security repodt is missing or a security check was unable to be performed from the scanned computer.

Scans a computer for insecure configuration settings.

A window will display when the installation has been successfully completed. The Windows and Desktop Applications check determines if your current configuration leaves your computer vulnerable to easy attacks.

mmbsa If you are not a system administrator, you should not run these scans. So in order to get an overview of which machines that do not have exporg report, I did the following script:. Above I excluded the once I was exporrt would fail due to other permissionsbut some machines may be offline, some with special permissions may hide somewhere etc. It provides various key information about the environment, which can surely be used for something. A yellow X is used for warning messages for example, the computer does not have the latest service pack or update rollupand a blue star is used for informational messages indicating that an update is not available to the computer because it has not been approved on the Update Services server.

Analyzing the Scan For each vulnerability, MBSA provides additional details about the scan via the What was scanned link, the Result details link, and the How to correct this link. Click Scan a computer.

MyITKit: How to convert a MBSA scan report to Excel?

Say you have a relort of machines, which you want to see the status of from a OS security perspective, but you are not interested in the various mbs MS products office, Exchange etc. Scores cannot be changed or reassigned for system configuration checks. Leave all options set to default and click Start Scan. It is of course possible to execute the MBSAcli. Visit Microsoft for a list of supported versions of Microsoft Office. If it has been a while since you last updated your computer, this will most likely be marked with a red X.


The How to correct this window displays the recommended solution with step-by-step instructions.

Get Missing Updates with Powershell and MBSA

The MBSA also provides additional information about the system that was scanned in a separate section. Once the scan is complete, the scan results are shown in an organized report with several sections. Scan this list for any Red Xs. The 2 scripts could be fused into one, but for my purposes, where I need to run script 1 on a regular basis and script 2 on demand, this is the best way.

A yellow X is used when a non-critical check failed for example, an account has a password that does not expire. WSUS will show the machines overall status including everything. Visit Microsoft for a list of supported operating systems.

MBSA performs the following actions during a scan: This script simply gets the list from WSUS and checks whether a report of each machine exists in the report store. Select the button next to I accept the license agreement and click Next.