We've got lots of documentation for monitoring via WMI and what ports/permissions are needed, but I can't find anything about RPC service monitoring.
Does anyone have information on permissions/groups/etc for RPC?
Thanks.
To monitor Windows Performance Counters over RPC the user account must either be a member of the Administrators group OR a member of the "Performance Monitor Users" group in Windows.
Monitoring Processes via RPC appears to use the same permissions as listed above. Windows Services via RPC however requires Administrative permissions (Member of the Administrators Group". The only workaround to this is defining permissions on a per-service level using the "sc sdset" command.
http://www.solarwinds.com/netperfmon/SolarWinds/wwhelp/wwhimpl/common/html/wwhelp.htm#context=SolarWinds&file=OrionAPMPHComponentTypesPerformanceCounter.htm
That doesn't mention anything about the permissions needed (or services).
This may help as well.
Unfortunately no, still nothing to do with permissions needed for querying services.
Andy,
Are you looking for info on the user permissions needed to run the RPC service or to make calls to the service remotely?
Sorry, you answered that.
Thanks,
Michael
I've spoken to the development team about this and they will be sending me an internal document on this matter. I should have an answer for you tomorrow. Sorry for the delay. Hang in there!
Michael - the error was Access Denied, so networking was fine it was just the permissions.
aLTeReGo is on the right track and this is what we see with WMI as well. I was hoping with RPC we could set different permissions but it must use the same model.
Altering the DACL is a real P.I.T.A when you have 10+ services over 30+ client servers that need adjusting.
Thanks for the clarification!
