An official website of the United States government.

This is not the current EPA website. To navigate to the current EPA website, please go to This website is historical material reflecting the EPA website as it existed on January 19, 2021. This website is no longer updated and links to external websites and some internal pages may not work. More information »

Office of Inspector General

Report: Results of Technical Vulnerability Assessment: EPA’s Directory Service System Authentication and Authorization Servers

Report #11-P-0597September 9, 2011

What We Found

Vulnerability testing of EPA’s directory service system authentication and authorization servers conducted in March 2011 identified authentication and authorization servers with numerous high-risk and medium-risk vulnerabilities.

Report Materials​​

Due to the sensitive nature of the report’s security findings, the full report is not available to the public.

You may need a PDF reader to view some of the files on this page. See EPA’s About PDF page to learn more.