F-Secure blocking WMI and RPC...
Over the weekend, I pushed client 11.60 and while I am not sure if that is related or not, I can no longer do things like:
wmic /node:<machine name or IP> bios get serialnumber
Node - <machine name or IP>
Description = The RPC server is unavailable.
I am preping a new system but have not pushed F-secure to it yet and this works fine.
I have other management systems that depend on RPC and WMI and need to get this back on.
Any ideas much appriciated.
WMI does not have a binary - it is a Windows service that is a sub process of svchost.exe - and so is RPC. These two features of the Windows Management system are used by a number of management/monitoring/system information connection tools and it would seem funny if others are not having this problem.
At least in F-Secure PSB, I got this working via application control. It's because WMI uses dynamic ports in addition to WMI static ports .