I am trying to set up an authenticated Windows scan in a customer environment and have been told that Domain admin (as recommended by McAfee) is too much access to grant, well without a very good reason.
Does anyone know the minimum level of permissions needed to run an authenticated Windows Vulnerability Scan, as I would like to avoid any service credential with such sweeping access.
use a service account give an access that has privilege to logon on assets that you will scan remotely.. it can be not as domain admin but the important is that account has access to login on machine remotely.
In order to have, what I would consider a valid Windows scan, you should have Administrative access to the system. They system should also have the remote registry service running as well as file and print sharing enabled. Most checks from McAfee look at a systems registry settings or files to determine if the system is vulnerable, so those are key.