What type of vulnerability scan accesses both configuration and network service information from the system it is run against?

An authentication scan is designed to access both configuration and network service information from a system by utilizing valid credentials during the scan process. This type of scan provides a deeper insight into the system's vulnerabilities compared to unauthenticated scans, as it can analyze the system's configurations, user permissions, and network services that are typically restricted to authenticated users.

By logging into the system, the scanner can evaluate more than just the surface-level vulnerabilities displayed to unauthenticated users. It can identify issues such as misconfigurations, patch levels, and service exposures that are not visible without proper credentials.

In contrast, local scans typically run on individual systems without requiring authentication and focus primarily on local vulnerabilities rather than the broader network service environment. Network scans generally evaluate the security of devices and services from an external perspective without needing login credentials, limiting the depth of the assessment. Passive scans monitor network traffic to identify potential vulnerabilities without actively probing systems, which does not provide the comprehensive assessment achieved through authenticated scanning.