Elcomsoft.com » System & Security Software » Proactive Security Auditor » Help
Proactive Security Auditor is able to perform scanning of the remote machines.
All remote operations are performed by the special service which is installed and started on the remote machine when remote operation is requested, and stopped/removed when operation completes. This approach helps to avoid excessive nework load and saves CPU time on computer where PSA is launched. Also, this allows to perform simultaneous scanning of several computers.
The remote machine must be running Windows NT with SP3 or later, or Windows XP/2000/2003; administrative share (ADMIN$) must be accessible (i.e. file sharing must be enabled). Also, you may have to specify the credentials of the user that has local administrator privileges on that machine. In the domain environment, it is recommended to start PSA under the domain administrator's account.
If remote machine is running Windows XP SP2 or Windows Server 2003, the Network access: Sharing and security model for local accounts security policy should be set Classic - local users authenticate as themselves there. It can be done using Group Policy Editor (gpedit.msc) under the following branch:
Local Computer Policy
Computer Configuration
Windows Settings
Security Settings
Local Policies
Security Options
If, for some reason, PSA fails to scan the remote computer, please try to connect to ADMIN$ resource manually in Windows Explorer: Tools | Map Network Drive (do not forget to disable the Reconnect at logon option and supply the same credentials as in PSA). If connection will be performed successfully, PSA should also work (do not forget to disconnect the network drive after this test); if not, you may also need to check the filerewall settings on the remote computer. If manual connection to ADMIN$ also fails, it means that ADMIN$ share is not enabled, or security policy described above is set to Guest only - local users authenticate as Guest, or you are supplying the wrong credentials (password is wrong, or the given user does not have administrator privileges on the remote machine).
Get more information about Proactive Security Auditor
(c) 2005 ElcomSoft Co.Ltd.