Database Search

TechHome

	User Sample Code
	WMI_Scripter

• !Microsofts WMI Object Browser!
• !WMI Reference!
• !WMI Security!
• Add Key Qualifier
• Backup Event Log
• Best Way to Read Event Log via WMI
• Check if WMI is Installed
• Clear Event Log via WMI
• Close All but One Instance
• Detect If monitor is in Standby Mode
• Detect Resume From Standby
• Detect Standby or Hibernation Event
• Detecting Local Network Connectivity and Speed
• Determine Laptop or Destop System Enclosure
• Determine Machine Type
• Determining If a Machine is a Domain Controller
• Directory Watcher
• Display Refresh Rate
• Error 1261 on ConnectServer line
• Extract SN from Bios using WMI
• fileSizeEX returns 0 for the Pagefile.sys file
• Get Asset Tag From Dell Computers
• Get Daylight Savings Time
• Get Default Printer
• Get ipv6 IP Address via Host Name
• Get Owner of a Process
• Get Physical Memory
• Get Process List via WMI
• Get Remote Logged in User
• Get Specific Events
• Get Status of Network Adapter
• Get Win32_DiskDrive Data with DeviceID
• Install MSI apps
• Is Computer WMI Enabled UDF
• Last Reboot Time
• List Active Network Adapters
• List All Monitors
• List Available Screen Resolutions
• List Installed Modems
• List Namespaces
• List Processes on a Remote Computer
• List Scheduled Tasks
• Manufacturer Model and Serial from WMI
• Modify DNS Entries
• Monitor Events
• Obtain the Name of the Domain to which the Computer Belongs
• PCMCIA Card Detection
• Physical Memory Inspection
• Ping Status
• Remote Number of Drives
• Remote Process UDFs
• Run an Application on a Remote Computer
• Search Eventlog Example
• Set Adapter Speed Duplex
• SetDNSSuffixSearchOrder MisMatched Type Error
• System Restore Point
• Total CPU Usage
• Using WMI List Applications
• Win32_EncryptableVolume
• Win32_SerialPort Information via WMI
• Windows NT Schedule Service - AT
• WMI - Processor Info
• WMI and Arrays
• WMI and Get IPAddress Property
• WMI and Remote Interactive Desktop Scripts
• WMI and WinPE
• WMI causing LLSMGR to start
• WMI ExecQuery
• WMI Get Fan Speed
• WMI Get MAC Address and NIC info
• WMI hangs
• WMI ObjectOpen Problem on Windows 95
• WMI Query Paths Need Double Backslashes
• WMI Related Resources
• WMI Scriptomatic
• wntGetCon using WMI
• WQL LIKE Operator

Can't find the information you are looking for here? Then leave a message over on our WinBatch Tech Support Forum.

!WMI Security!

 Keywords: Remote Remotely Connect Rights Permissions 

Managing WMI security

Windows Management Instrumentation (WMI) supports a limited form of security that validates each user before the user is allowed to connect to WMI, on either the local computer or a remote computer. This security is layered on top of the operating system security. WMI does not override or circumvent security provided by the operating system.

By default, all members of the Administrators group have full control of the WMI services on the computer that is being managed. All others have read/write/execute permissions on their local computer only.

Permissions can be changed, either by adding a user to the Administrators group on the managed computer, or by authorizing users or groups in WMI and setting their permission level. Access is based on WMI namespaces.

On computers running Windows 95, Windows 98, or Windows Millennium Edition, all users have full control locally. However, permissions can be set for users managing a Windows 95, Windows 98, or Windows Millennium Edition computer remotely.

Security is checked only when a user connects to the Windows Management service. Thus, any changes made to a user's permissions while the user is connected will not take effect until the next time the user starts a WMI service. For example, if a user's access is revoked, the changes will not take effect until the user exits from WMI and attempts to connect to the service again.

To authorize WMI users and set permissions

1. Open WMI Control (wmimgmt.msc). In the console tree, right-click WMI Control, and then click Properties.

2. Click the Security tab.

3. Select the namespace for which you want to give a user or group access, and then click Security.

4. In the Security dialog box, click Add.

5. In the Select Users, Computers, or Groups dialog box, enter the name of the object (user or group) that you want to add.

6. Click the Check Names button to verify your entry and then click OK. You might have to change the location or use the Advanced button to query for objects. See the dialog box help for more details.

7. In the Security dialog box, under Permissions, select the permissions to allow or deny the new user or group.

    
   Execute Methods- Allows methods exported from the WMI classes or instances to be run. 
   Full Write - Allows full read, write, and delete access to all WMI objects, classes, and instances. 
   Partial Write - Allows write access to static WMI objects. 
   Provider Write - Allows write access to objects that are provided by providers. 
   Enable Account - Allows read access to WMI objects. 
   Remote Enable - Allows remote access to the namespace. 
   Read Security - Allows read-only access to WMI security information. 
   Edit Security - Allows read and write access to WMI security information. 
   

   Notes:

• To open the WMI Control console, click Start, click Run, type wmimgmt.msc, and then click OK.

• You must be an administrator or a member of the Administrators group on the computer you are managing, or have been given appropriate permissions, to perform this task.

• You can set permissions on a remote computer or a local computer.

• To access a remote computer, right-click WMI Control, click Connect to another computer, click Another computer, and then type the name of the computer to which you want to connect. If you are using WMI Control from the Computer Management console, right-click the Computer Management node to connect to the other computer.

• You can connect to the computer as a different user if you have multiple logon names. To connect as another user, click the General tab, click Change, clear the Log on as current user check box, and then type a user name and password.

• On computers running Windows 95, Windows 98, or Windows Millennium Edition, all users have full control locally. Security settings are only relevant for remote connection to a computer running Windows 95, Windows 98, or Windows Millennium Edition.

• You can delete a user's or group's authorization to access WMI services by selecting that user or group and clicking Remove.

Article ID:   W15355

File Created: 2002:12:19:14:43:52

Last Updated: 2002:12:19:14:43:52