So after 'the hack' mgmt is concerned about account rights. We utilize WMI to poll Windows Servers, is there a way to create an account that is read-only (or has no rights but polling)?
Probably a fairly common ask amongst InfoSec departments right now. The below document should shed some light.
Monitoring Access: How to grant minimum WMI access to the Monitoring Service Accounts - TechNet Articles - United States (English) - TechNet Wiki (microsoft.com)
Yeah, all of a sudden the Security team is all about Solarwinds. Thanks for the link, it's perfect. Though you would think there would be an easier way to do this.
