连接到 WMI:某些计算机(但不是全部)上出现 0x800706ba 错误
当我尝试从 Powershell、ConfigMgr 或 WMI 资源管理器连接到 WMI 时,我可以与大多数计算机通信,但有些计算机(可能是 30%?)返回 0x800706ba(RPC 服务器不可用)。
如果我关闭远程计算机上的防火墙,查询就会开始工作。 不过,我尝试了一系列不同的防火墙设置配置,但我似乎无法弄清楚什么是正确的例外组合。
这是远程计算机上我的防火墙配置的相关部分。 疯狂的部分是,当它不起作用时,pfirewall.log 中会列出无删除 - 但同样,如果我关闭远程计算机上的防火墙,一切都会开始正常运行。
我会照顾这个线程,因为我知道你可能需要更多的细节来诊断这个问题。
Domain profile configuration (current):
-------------------------------------------------------------------
Operational mode = Enable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Enable
Service configuration for Domain profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No Remote Desktop
Allowed programs configuration for Domain profile:
Mode Name / Program
-------------------------------------------------------------------
Enable Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Enable Network Diagnostics for Windows XP / C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
Port configuration for Domain profile:
Port Protocol Mode Name
-------------------------------------------------------------------
3389 TCP Enable Remote Desktop
Standard profile configuration:
-------------------------------------------------------------------
Operational mode = Enable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Enable
Service configuration for Standard profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No Remote Desktop
Allowed programs configuration for Standard profile:
Mode Name / Program
-------------------------------------------------------------------
Enable Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Enable McAfee Framework Service / C:\Program Files\McAfee\Common Framework\FrameworkService.exe
Enable Network Diagnostics for Windows XP / C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
Port configuration for Standard profile:
Port Protocol Mode Name
-------------------------------------------------------------------
3389 TCP Enable Remote Desktop
Log configuration:
-------------------------------------------------------------------
File location = C:\WINDOWS\pfirewall.log
Max file size = 4096 KB
Dropped packets = Disable
Connections = Disable
Bluetooth Network Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
Local Area Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
Wireless Network Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
1394 Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
When I try to connect to WMI from Powershell, ConfigMgr, or WMI explorer, I can talk to the majority of my computers, but some (maybe 30%?) return an 0x800706ba (RPC server is unavailable).
If I turn the firewall off on the remote machine, the queries start working. I have tried a bunch of different configurations of firewall settings, though, and I can't seem to figure out what the right combination of exceptions is.
Here's the relevant bits of my firewall config on the remote machine. The crazy part is that there are no drops listed in pfirewall.log when it doesn't work - but again, if I turn off the firewall on the remote computer, everything starts to behave.
I will babysit this thread since I know you'll probably need more details to diagnose this.
Domain profile configuration (current):
-------------------------------------------------------------------
Operational mode = Enable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Enable
Service configuration for Domain profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No Remote Desktop
Allowed programs configuration for Domain profile:
Mode Name / Program
-------------------------------------------------------------------
Enable Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Enable Network Diagnostics for Windows XP / C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
Port configuration for Domain profile:
Port Protocol Mode Name
-------------------------------------------------------------------
3389 TCP Enable Remote Desktop
Standard profile configuration:
-------------------------------------------------------------------
Operational mode = Enable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Enable
Service configuration for Standard profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No Remote Desktop
Allowed programs configuration for Standard profile:
Mode Name / Program
-------------------------------------------------------------------
Enable Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Enable McAfee Framework Service / C:\Program Files\McAfee\Common Framework\FrameworkService.exe
Enable Network Diagnostics for Windows XP / C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
Port configuration for Standard profile:
Port Protocol Mode Name
-------------------------------------------------------------------
3389 TCP Enable Remote Desktop
Log configuration:
-------------------------------------------------------------------
File location = C:\WINDOWS\pfirewall.log
Max file size = 4096 KB
Dropped packets = Disable
Connections = Disable
Bluetooth Network Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
Local Area Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
Wireless Network Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
1394 Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(3)
对此的一般解决方法是允许防火墙内置的“远程管理”例外。 问题是 WMI 使用 RPC 端点映射器,因此涉及多个端口。 http://msdn.microsoft.com/en-us /library/aa389286(VS.85).aspx 可能是关于该主题的明确讨论。
The general fix for this is to allow the exception for "Remote Administration" which is built into the firewall. The problem is that WMI uses an RPC endpoint mapper, so multiple ports become involved. http://msdn.microsoft.com/en-us/library/aa389286(VS.85).aspx is probably the definitive discussion on the topic.
当计算机登录到域时,域设置应处于活动状态。 其他时间运行时的标准设置。 作为测试,我建议首先在 GUI 中进行此设置 - 更容易查看正在发生的情况并确认事情“发生”。 我还将例外添加到两个配置文件中 - 再次作为测试。 阅读有关域和标准模式的产品内帮助; 您需要查看一些细节,以了解哪一个在计算机上处于活动状态,并且文档提供了很好的演练。
The Domain setting should be active when the machine is logged into a domain. The Standard setting when run at other times. As a test, I'd recommend getting this set up in the GUI first - it's easier to see what's going on and confirm that things "took." I'd also add the exception to both profiles - again, as a test. Read the in-product help on the Domain and Standard modes; you'll need to look at some specifics to see which one is active on the machine and the docs offer a good walkthrough.
我发现在我们的网络上,即使通过 gpo 启用了远程管理,Vista 和 Win 7 计算机也需要以下设置:
Windows 防火墙:允许 ICMP 例外(已启用)- 允许入站回显请求(已启用)
该设置在以下情况下应该是多余的:远程管理已启用,但由于某种原因似乎是必要的。
I found that on our network the following setting was required for Vista and Win 7 machines, even after Remote Administration was enabled via gpo:
Windows Firewall: Allow ICMP exceptions (Enabled) - Allow inbound echo request (Enabled)
The setting should be redundant when Remote Administration is enabled, but for some reason seems to be necessary.