1

Hey guys,

So this is weird for me, I’ve used this software before to pull machines into the inventory, however this time whenever I run a scan I get this:

Capture.PNG
Capture.PNG800×91 8.93 KB

Any idea what I can do? That’s 56 computers I need to get into the inventory but yet they won’t pull anything. Thank you for the help!

4 Spice ups
2

Those in red, there is something there but it isn’t scannabale.

For windows devices pings need to be allowed and file and printer sharing enabled, if UAC is present there is also another change needed.

If they are switches, routers, printers etc. let me know the type and we can go from there

3

The red ones are fine, they are temp devices so I’m not expecting them to stay, it’s the dark grey boxes that show up with names but don’t go into my inventory. They are all win 7 computers and I’m using both my domain admin and the local admin to scan with.

4

Bump. Still experiencing this issue. I know that VLAN has way more then 47 machines since it is almost maxed out. Wondering if anyone can shed some light? Would I have more luck killing it all and trying again? Using a CSV? Any ideas would be greatly appreciated.

5

Bump - does nothing here

Your devices are not being found, hence they are grey.

Either pings are disabled or a firewall, IDS or IPS system is blocking the port scans on these devices.

Can you successfully ping the devices on those IPs from your SW server? Lets start there

6

Yes, and if I hover over the dark gray areas they show computer names. But they don’t get inventoried. I don’t see how it coulf be a firewall setting since the machines all have the same image. The only thing I can think of is that maybe Sophos (kind of like bitlocker) is maybe blocking it?

7

So lets start with the basic tests,

Can your SW server ping one of these devices and get a reply?

If you ping machine1 and 1.2.3.4 comes back, and you ping -a 1.2.3.4 do you also get machine1 replying?

Is file and printer sharing enabled on these devise?

Are they running windows home editions?

8

Running win 7 pro
Yes to file and printer sharing (udp and rdp as well)
Server can ping and the ping test -a works

9

Can you access shares on the client from the SW server

\machinename\admin$ and use the credentials you scan with

10

Yes, I can use my admin creds to access any files in the computer. I just tested to verify it

11

add one of the nodes by name as an individual scan item, disable the others and scan the single device - how does it return?

12

Give me a minute, I’ll test

13

Ok, so I put the scan in as the hostname, and it was able to resolve to it’s IP, however it still didn’t inventory it. I tried to do it by just the IP, and I got the same result.

14

Something is definitely causing an issue from the client side, can you disable the firewall and AV, see if this makes any difference

15

I need to wait for the user to get off the machine. Once they are clear I will disable it.

16

Do the machines have UAC enabled?

If yes try importing the registry file and rebooting, then scan again.

Also try this it will either say (4) or (8) edited

Run a Command Prompt as Administrator on the machine that is failing, and enter / paste the following (without quotes):
"netsh advfirewall firewall set rule group=“windows management instrumentation (WMI)” new enable=Ye

Spiceworks_UAC_remote_allow.reg (167 Bytes)

17

Ok so I put the reg file in and it worked. What exactly is that reg file doing?

1 Spice up
18

Allowing a remote administrator to bypass the local UAC

19

We’re getting somewhere though.

This can be applied to an image/build or GPO

20

Yeah, but I am curious as to what would cause it to not be able to normally bypass it? Why would UAC block it when other computers with the same image don’t? It’s just weird… I am pushing a script now to fix it. Thank you for your help!