We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
5,208 Software Downloads

Microsoft Web Application Configuration Analyzer 1.0

The Microsoft Web Application Configuration Analyzer is a smart security tool that will evaluate a computer's configuration for the security of general Windows, IIS, ASP.NET and SQL Server settings, and alert you to any problems.

If you think this sounds a little advanced, then you're right: it was originally developed for internal use at Microsoft, and is actually intended for use on servers. If you're an experienced Windows user, though, you'll find the program does have plenty to offer, even of a standard home PC. And it's certainly easy to use.

Launch the program, click Scan a Machine > Scan and it'll quickly evaluate your PCs setup. There are checks to confirm that your Windows Guest account is disabled, for instance; that CD AutoRun is disabled; that you're not running risky or unnecessary services like Remote Registry; that your firewall is enabled, User Account Control is turned on, and more.

Server admins will appreciate the IIS tests, which then check that web services extensions are disabled; server certificates are valid and haven't expired; log files are correctly configured; directory browsing, file permissions, mail and many other configuration details are set up correctly.

And SQL rules make sure that sample databases are removed, Windows authentication is enabled, and potentially dangerous protocols are disabled.

When the scan process is finished you'll get a detailed report highlighting any successes, and displaying alarming red "failed" messages wherever there are problems.

When you read the results, though, it's important to keep in mid that this is aimed at servers. So, for instance, the program will demand that all file shares are removed from the system drive, a wise move for servers, but entirely unnecessary (and probably counter-productive) for regular home PCs.

It makes sense to run the Microsoft Web Application Configuration Analyzer, then, check your system and see what it has to say. But don't blindly follow all its recommendations. If you understand the need for a change, then make it; but if you don't see why it matters that you've failed a particular test, then feel free to ignore it: this security point may simply not be relevant to your setup.

Platforms: Windows 7 (32 bit), Windows 7 (64 bit), Windows Server
Version: 1.0
Licence: Freeware
Manufacturer: Microsoft
Date Added: {ts '2010-09-24 15:28:00'}

IDG UK Sites

How to use an Apple Watch: Everything you need to know about the Apple Watch

IDG UK Sites

Why Scottish Tablet is better than the iPad mini

IDG UK Sites

VFX Breakdowns: 10 behind-the-scenes looks at how incredible effects were created for Hollywood...

IDG UK Sites

Apple MacBook 1.1 GHz review (Retina, 12-inch, Early 2015): The future of Apple laptops