To be honest the real questions are; 1. Are you required to do this? (Usually yes) - if yes, can you gain benefit? (Usually you can) 2. Do they have documentation on least privilege necessary for their tools to run?
On Tue, Aug 3, 2010 at 10:26 AM, Free, Bob <r...@pge.com> wrote: > My experience with WMI and CMDB or security scanner products tells me > you are out of luck, at some point, the information they require is > situated such that they require admin privs just to be able to read it. > > -----Original Message----- > From: Joseph Heaton [mailto:jhea...@dfg.ca.gov] > Sent: Tuesday, August 03, 2010 10:18 AM > To: NT System Admin Issues > Subject: Re: WMI information gathering > > Anyone have any idea on this one? > >>>> Joseph Heaton <jhea...@dfg.ca.gov> 8/2/2010 3:42 PM >>> > We have a group that wants to come in, and "scan our servers" to gather > information. We want to cooperate with this effort, but we don't want > to give them access to be able to write back to the servers. Is this > possible? Is there a tool that can be used without an admin account, in > order to gather information from within WMI? Please contact offline for > further details, if needed. As always, I sincerely appreciate any > assistance any of you may be able to provide. > > Thanks, > > Joe > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
