I get a lot of scan errors relating to permissions or firewall issues. the windows firewall is enabled on the workstations. I read up on how to make the scan work and the one item i have concern about is opening ports 1024 - 2000 for dynamic WMI. I would have to open up each of the 997 ports one entry at a time in the firewall port exception list. Is there any other way to accomplish this task? Creating 997 individual port exception entries does not seem like the correct way to solve this problem.<\/p>","upvoteCount":2,"answerCount":6,"datePublished":"2010-10-22T08:03:59.000Z","author":{"@type":"Person","name":"edhall1325","url":"https://community.spiceworks.com/u/edhall1325"},"acceptedAnswer":{"@type":"Answer","text":"

Advertisement

Close

You should be able to enable the exception for Remote administration in your GPO for the firewall.<\/p>","upvoteCount":0,"datePublished":"2010-10-22T08:18:36.000Z","url":"https://community.spiceworks.com/t/inventory-scan/66179/2","author":{"@type":"Person","name":"alex3031","url":"https://community.spiceworks.com/u/alex3031"}},"suggestedAnswer":[{"@type":"Answer","text":"

Advertisement

Close

I get a lot of scan errors relating to permissions or firewall issues. the windows firewall is enabled on the workstations. I read up on how to make the scan work and the one item i have concern about is opening ports 1024 - 2000 for dynamic WMI. I would have to open up each of the 997 ports one entry at a time in the firewall port exception list. Is there any other way to accomplish this task? Creating 997 individual port exception entries does not seem like the correct way to solve this problem.<\/p>","upvoteCount":2,"datePublished":"2010-10-22T08:03:59.000Z","url":"https://community.spiceworks.com/t/inventory-scan/66179/1","author":{"@type":"Person","name":"edhall1325","url":"https://community.spiceworks.com/u/edhall1325"}},{"@type":"Answer","text":"

Yes, on the clients make sure remote administration is enabled, and WMI will use ports TCP 135 and TCP 445.<\/p>\n

For a more detailed explanation:<\/p>\n

http://community.spiceworks.com/education/projects/Windows_Firewall<\/a><\/p>","upvoteCount":0,"datePublished":"2010-10-22T08:31:52.000Z","url":"https://community.spiceworks.com/t/inventory-scan/66179/3","author":{"@type":"Person","name":"timjackson4638","url":"https://community.spiceworks.com/u/timjackson4638"}},{"@type":"Answer","text":"

done that already, no help. when I disable the windows firewall GPO and the firewall shuts off on the workstation the scan works no errors but i need to have the scan work with the firewall on.<\/p>","upvoteCount":0,"datePublished":"2010-10-22T08:32:17.000Z","url":"https://community.spiceworks.com/t/inventory-scan/66179/4","author":{"@type":"Person","name":"edhall1325","url":"https://community.spiceworks.com/u/edhall1325"}},{"@type":"Answer","text":"

That’s very odd, are you blocking outgoing from the machine traffic too? Maybe that needs to be removed.<\/p>","upvoteCount":0,"datePublished":"2010-10-22T08:38:15.000Z","url":"https://community.spiceworks.com/t/inventory-scan/66179/5","author":{"@type":"Person","name":"alex3031","url":"https://community.spiceworks.com/u/alex3031"}},{"@type":"Answer","text":"

FOUND IT! under a close inspection of the GPO the scope was incorrectly applied missing a lot of machines. Machines with scan errors. <\/p>\n

Fixed I should not see many r any scan errors tomorrow.<\/p>","upvoteCount":0,"datePublished":"2010-10-22T08:55:25.000Z","url":"https://community.spiceworks.com/t/inventory-scan/66179/6","author":{"@type":"Person","name":"edhall1325","url":"https://community.spiceworks.com/u/edhall1325"}}]}}