Microsoft Baseline Security Analyzer 2.2
Published: October 8, 2007 | Updated: August 20, 2010
Microsoft Baseline Security Analyzer (MBSA) is an easy-to-use tool that helps small- and medium-sized businesses determine their security state in accordance with Microsoft security recommendations and offers specific remediation guidance. Improve your security management process by using MBSA to detect common security misconfigurations and missing security updates on your computer systems.
Built on the Windows Update Agent and Microsoft Update infrastructure, MBSA ensures consistency with other Microsoft management products including Microsoft Update (MU), Windows Server Update Services (WSUS), Systems Management Server (SMS), System Center Configuration Manager (SCCM) 2007, and Small Business Server (SBS).
Used by many leading third-party security vendors and security auditors, MBSA on average scans over 3 million computers each week. Join the thousands of users who depend on MBSA for analyzing their security state.
MBSA 2.2 is now available
In order to provide support for Windows 7, Windows Server 2008 R2, 64-bit scan tool and vulnerability assessment check support, Windows Embedded support, and compatibility with the latest versions of the Windows Update Agent (WUA), Microsoft Baseline Security Analyzer (MBSA) 2.2 is now available.
What is MBSA 2.2?
MBSA 2.2 is an update to MBSA 2.1.1 that builds on the previous MBSA 2.1.1 version that supports Windows 7 and Windows Server 2008 R2 and corrects minor issues reported by customers.
Will I notice a difference when I run MBSA 2.2?
Customers using the offline catalog (WSUSSCN2.CAB file) will no longer need to place the catalog file in a version-specific path since the “2.1” cache directory has been removed. The file should now be placed into
Also, automatic distribution of the latest Windows Update Agent (WUA) client to client computers scanned by MBSA has been disabled by default in MBSA. This may prevent MBSA from successfully scanning computers that do not have the latest WUA client installed. Administrators and security auditors will want to select the option to "Configure computers for Microsoft Update and scanning prerequisites" in order to improve security scan success which will allow MBSA to automatically distribute an updated Windows Update Agent if needed.
Note: Unless specifically noted, all references to MBSA 2.0 in the MBSA TechNet pages also apply to MBSA 2.2.
New features and improvements in MBSA 2.2
Frequently Asked Questions
Please refer to the MBSA Q&A for answers to commonly asked questions about MBSA and other Microsoft security tools.