HPE Community
Server Management - Systems Insight Manager
1753400 Members
7398 Online
108792 Solutions
New Discussion

Who Me Too'd this topic

TrevorT
Occasional Advisor

‎05-02-2013 05:56 PM - edited ‎05-13-2013 11:39 AM

‎05-02-2013 05:56 PM - edited ‎05-13-2013 11:39 AM

WMI Mapper 7.2 - windows 2008 & 2012 security settings

The release notes for version 2.7.1 say that

"WMI Mapper and WMI Mapper Indications  services with least privileges for Microsoft Windows Server 2008 R2 and Microsoft Windows 7, WMI Mapper service runs as "NT SERVICE\WMI Mapper" and WMI Mapper Indications Service runs as "NT SERVICE\WbemConsumer" on these 2 respective platforms.

 

Version 7.2 notes say

"Changed WMI Mapper installer to install services with least privileges even on Microsoft Windows Server 2012"

 

Release notes:

http://h20000.www2.hp.com/bizsupport/TechSupport/SoftwareDescription.jsp?swItem=MTX-39ce46ee34984271807af76453&lang=en&cc=us&mode=5&

 

The install notes for WMI mapper say that for 2003 and XP, extra DCOM permissions must be added.

http://h20000.www2.hp.com/bizsupport/TechSupport/SoftwareDescription.jsp?swItem=MTX-39ce46ee34984271807af76453&lang=en&cc=us&idx=1&mode=4&

 

I need to setup hardware monitoring in a secure environment.  I can't use SNMP, and I can't have the DCOM permissions set the way they need to be set for 2003.

 

When I install WMI Mapper on 2008, it auto-sets the DCOM permissions the way it does for 2003.

 

I can't find any good documentation on how/why 2008/2012 is more secure that 2003.  Does 2008/2012 need those extra security holes that 2003 does?  What do those release notes mean - how is 2008 more secure?  What is the 'least priveledges' - is that some type os special / custom install?

 

How can I install WMI Mapper on Windows 2008 (or 2012) and have it not require the DCOM holes listed for 2003?

1 person had this problem.
Reply
Who Me Too'd this topic
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.