Under Windows 2000/XP the WMI security is easy to find (wmimgmt.msc).
Howver, how/where does one set the DCOM security settings for WMI to
allow remote access?
Under Wind98/ME you could simply run dcomcnfg - but that just lauches
the Component Services dialog in Windows XP. So how do you do it on XP?
Is it a GPO?
--
Best Regards,
James Crosswell
Software Engineer
Microforge.net Limited
http://www.microforge.net
--
Jim Vierra
"James Crosswell" <ja...@microforge.net> wrote in message
news:OjDKoDSa...@TK2MSFTNGP14.phx.gbl...
Not me ;-)
But there are differences between w2k and XP type of OS. Since I am facing
XP, I use always
objService.Security_.ImpersonationLevel =
wbemImpersonationLevelImpersonate
objService.Security_.AuthenticationLevel = wbemAuthenticationLevelPkt
and I am sure, everything works properly.
Best regards,
Manfred
I always try to remember to "impersonate" but don't always take to set the
level. Packet is the most reliable as anything below or up to packet will
generally work with packet set.
--
Jim Vierra
"Manfred Braun" <a...@bb.cc> wrote in message
news:OPPcbkZa...@tk2msftngp13.phx.gbl...
Great but every now and then a customer gets in touch and says they
can't connect to remote machines. If I've checked all the WMI security
and they're logged in as a Domain Admin then the logical thing to look
at is DCOM security settings... so the fact that it works in most
ordinary configurations won't help me troubleshoot this.
Ahhh! Thanks Manfred - exactly what I needed... I was looking under the
machine for some component called WMI - I thought maybe you could set
this at a more granular level (per component).
In any case, thank you very much!
--
Jim Vierra
"James Crosswell" <ja...@microforge.net> wrote in message
news:eO20MKqa...@TK2MSFTNGP14.phx.gbl...
Hi Jim - it appears (after speaking with Microsoft Support about this)
that it's an OS issue (can be reproduced with wbemtest.exe). They've
given me a bunch of stuff to look into, including various DCOM
settings... among the suggestions was simply to delete the following
registry key to restore the original default values:
HKLM\SOFTWARE\Microsoft\Ole\DefaultAccessPermission
In my case it's not necessarily Remote connections to WMI that are a
problem (I have the problem with local connections too). However the
Microsoft rep that I'm talking to said that DCOM problems could actually
cause problems with WMI (and various other things) even when accessing
this locally... so it's always something to look at.
--
Jim Vierra
"James Crosswell" <ja...@microforge.net> wrote in message
news:OF3FfP5...@tk2msftngp13.phx.gbl...