Versions Compared

Old Version 10

changes.mady.by.user Andres Araya

Saved on

compared with

New Version 11

changes.mady.by.user Mark Unwin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents

Overview

Active Directory Discovery queries Active Directory for a list of network subnets and discovers each in turn.

NOTE - You will need the ports for WMI on the Windows firewall opened on each target Windows computer. For Windows Core servers, ensure you allow the firewall connections as per - http://blogs.technet.com/b/brad_rutkowski/archive/2007/10/22/unable-to-remotely-manage-a-server-core-machine-mmc-wmi-device-manager.aspx (note, page removed by Microsoft. Contents are below).

How To

To use Discovery we require access credentials on the target devices. Go to Discover -> Credentials -> Create Credentials and create credentials for all the types of devices you have. They may be for Windows, SSH (Linux / OSX / etc), SNMP, etc.

...

Once the initial list of target devices has been obtained you should see details of each target as it is scanned and input into Open-AudIT.



TechNet Blog

Unable to remotely manage a Server Core machine (MMC, WMI, Device Manager)

BooRadely 22 Oct 2007 5:56 PM

I've been seeing a lot of churn internally and externally about installing a role on a server core machine and then trying to connect to it remotely only to find that the remote server core machine won't allow you to connect. 

Remote Management:

To allow remote management of a server core machine run this locally on the box:

Code Block
C:\>netsh advfirewall set currentprofile settings remotemanagement enable
Ok.

After which point the firewall should allow all your remote admin tools to connect (computer management and DNS snap-in for example).  

WMI:

If you're looking for WMI to be open on your servers:

Code Block
C:\>netsh advfirewall firewall set rule group="windows management instrumentation (wmi)" new enable=yes

Updated 4 rule(s).
Ok.

Device Manager:

You can enable a read-only view of device manager remotely by doing the following:

1) On the server core machine enable remote management (see above).

2) On a full server open gpedit.msc and connect to the server core machine.

3) Go to: Computer Configuration\Administrative Templates\System\Device Installation

4) Enable the following policy: Allow remote access to the PnP interface.

5) Reboot the Server Core machine.

6) Now you should be able to access the device manager snap-in remotely from a full server.


Commands for a lot of different situations:

Want to know how to add.remove devices locally on a server core machien via the command line and every other command you'd ever need?  See this:

http://technet2.microsoft.com/windowsserver2008/en/library/47a23a74-e13c-46de-8d30-ad0afb1eaffc1033.mspx?mfr=true