Objective

• Perform a credentialed scan without errors

Windows Requirements

•  Port 139 and 445 (smb) – File and Printer Sharing must be enabled and allowed through the firewall
• Windows Management Instrumentation (WMI) must be enable and allowed through the firewall
  • Windows Management Instrumentation (ASync-In)
  • Windows Management Instrumentation (WMI-In)
  • Windows Management Instrumentation (DCOM-In)
• Remote Registry Service must not be disabled (manual or automatic is fine)
• Default shares C$ IPC$ etc must be available
• The scan account must be local administrator equivalent.

More info:

• https://docs.tenable.com/nessus/6_9/Content/CredentialedChecksOnWindows.htm?Highlight=credentials

Linux and Network Devices Requirements

• Port 22 (ssh) must be open
• The scan account must be able to su to root on linux servers

More info:

• https://docs.tenable.com/nessus/6_9/Content/UnixCredentialedChecksPrerequisites.htm

References

• https://docs.tenable.com/nessus/6_9/Content/ScanCredentials.htm

See Also

• Identify failed credentialed scans in Nessus / Security Center