Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Systeminfo /S prompts for a password

Posted on 2004-10-01
5
Medium Priority
?
1,533 Views
Last Modified: 2012-05-05
I am a domain admin on our company network, and am faced with a problem that is quite puzzling.  On a select few machines in our domain (including my own personal machine), if I login is myself, and run a 'systeminfo /S computername' I am prompted with a "Type the password for domain\choldsworth" ... I type in my password, and then it errors out with a login failure.  If I run the systeminfo /S on a different computer, still logged in as myself, it works just fine.  However, I've also found that I can only do a systeminfo on my own personal machine if I am logged into it directly... If I (or any of the other admins) try and systeminfo my machine remotely, we have the same problem.

Normally, this wouldn't be a huge issue ... however, we have just purchased some auditting software, and if I try and scan someone from my computer, I get an access denied message... which I am sure is related.

I am running Windows XP SP2, with the firewall off.  Other machines running WinXP SP2 are able to perform this command w/o problem.

If anyone has an idea what the issue could possibly be, please reply... I am running out of ideas :)
0
Comment
Question by:choldsworth
5 Comments
 
LVL 24

Expert Comment

by:Kenneniah
ID: 12203404
The only thing offhand I can think of is if somehow local policy got changed. Specifically "Access this computer from the network", and "Deny access to this computer from the network" under User Rights Assignment in secpol.msc.

Make sure Administrators is in the first and not in the second.

Can you connect at all to these machines from a remote computer such as mapping a drive to?
0
 

Author Comment

by:choldsworth
ID: 12203450
Good suggestion ... I checked, and unfortunately everything checks out ok under gpedit.msc - Admins have access, and are not under deny access.

Yes, I can connect to these machines by mapping a drive.  The only problem I seem to have is running a systeminfo on them, or running my auditing software on them.  It prompts for a password, but does not accept my credentials.
0
 
LVL 1

Accepted Solution

by:
DebugNT earned 1000 total points
ID: 12209275
To contact the remote computer, the SYSTEMINFO program uses WMI which in turn relies on proper operation of DCOM.  Your remote security proble may rest with dcom.

Use dcomcfng to configure DCOM Security.
Here are a few resources you may find useful.

COM Security in Practice
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dncomg/html/msdn_practicom.asp

Securing Remote Management with WMI
http://mcpmag.com/columns/article.asp?EditorialsID=381

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/com/htm/reg_3kv9.asp

If you find yourself changing the permissions, then you may want to just return to the defaults.
Delete the DefaultAccessPermissions in the above key to get back to the default the system ships with.

Try a quick test with the following script to see if you can contact the WMI repository on the remote machine.

PROC.VBS

'Change the computername to the computer name
strComputer = "COMPUTERNAME"
Set objWMIService = GetObject("winmgmts:" _
    & "{impersonationLevel=impersonate}!\\" & strComputer & "\root\cimv2")

Set colSettings = objWMIService.ExecQuery _
    ("Select * from Win32_Processor")

For Each objProcessor in colSettings
    Wscript.Echo "Processor: " & objProcessor.Description
Next

Good Luck,

John
0
 

Author Comment

by:choldsworth
ID: 12292476
Thanks a lot, John.  After reviewing those links, I was able to determine that DCOM was actually turned off.  I'm guessing a security update I ran at some point may have done it.. I'm not sure.  After re-enabling DCOM, systeminfo /S (and our auditing software) now works like a charm.  Thanks again!

Chris
0
 

Expert Comment

by:mirthless
ID: 20361024
I had the same problem. Somehow, DCOM got disabled on my computer. To turn it back on I...
Start > Run > dcomcnfg
Expand Component Services > Computers, Right Click 'My Computer' > Properties.
On the Default Properties tab, check 'Enable Distributed COM on this computer'
Other settings were:
     No check in 'Enable COM Internet Services on this computer'
     Default Authentication Level = Connect
     Default Impersonation Level = Identify
     No check in 'Provide additional security for reference tracking'
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Migration of Exchange mailbox can be done with the ExProfre.exe tool. But at times, when the ExProfre.exe tool migrates the Exchange Server user profile, it results in numerous synchronization problems. Synchronization error messages appear in the e…
Ok I have been working on this for some time having learned and gained certification in XenDesktop 4 along came version 5 which was released last month. Since then I have been working to deploy XenDesktop 5 in a small environment with only 2 virt…
Integration Management Part 2
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

971 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question