Resolving failure to run commands on Windows Servers during discovery in Service Mapping
In some cases Service Mapping may be able to connect to Windows Management Instrumentation (WMI), but fails to run all or specific commands such as netstat.
- The business service map displays the warning icon () on top or instead of the Windows Server.
- The following error message displays for the Windows Server:
Failed to execute WMI command on host
Possible Cause 1
The Administrators group on the Windows Server has reduced DCOM rights compared to the default Windows installation.Resolution 1
- In the command line shell, enter exe.
- In the Component Services window, navigate to Component Services > Computers.
- Right-click on My Computer and select Properties.
- Click the COM Security
- Click Edit Limits.
- In the Access Permission window, click Add.
- In the Select Users or Groups widow, enter Distributed COM Users and click OK.
- In the Access Permission window, select Distributed COM Users and verify that the following permissions are allowed:
- Local Launch
- Remote Launch
- Local Activation
- Remote Activation
Appropriate security policies are not configured correctly for the Service Mapping user or the group to which this user belongs.
- On the Windows Server that you discover, click Start > Run and enter secpol.msc.
- In the Local Security Policy window, navigate to Security Settings > Local Policies > User Rights Assignment.
- Right-click My computer and select Properties.
- Right-click relevant policies and check the Service Mapping user configured for them. If necessary, click Add User or Group and add the Service Mapping user to this policy. Perform this for the following policies:
- Debug Programs
- Restore Files and Directories
- Logon as batch job
- Logon as service
The Service Mapping user is not allowed to access the administrative share drive C$.
- Configure the target host to allow the user to access the administrative share drive C$.
- On the firewall, allow the relevant MID server access to the target host on port 8585.
The administrative share is not available for the current user.
- On the MID Server, open the command line window.
- Run the following command: net use \\ip_address\C$ /USER:domain\user password.
- Check that the command competes successfully. If it does, run the following command: net use \\ip_address\C$ /DELETE to clear this connection.
- If there the net use \\ip_address\C$ /USER:domain\user password command fails, allow access to the administrative share on the host.