tags:

views:

4232

answers:

3
+1  Q: 

Connecting to WMI: 0x800706ba errors on some machines (but not all)

When I try to connect to WMI from Powershell, ConfigMgr, or WMI explorer, I can talk to the majority of my computers, but some (maybe 30%?) return an 0x800706ba (RPC server is unavailable).

If I turn the firewall off on the remote machine, the queries start working. I have tried a bunch of different configurations of firewall settings, though, and I can't seem to figure out what the right combination of exceptions is.

Here's the relevant bits of my firewall config on the remote machine. The crazy part is that there are no drops listed in pfirewall.log when it doesn't work - but again, if I turn off the firewall on the remote computer, everything starts to behave.

I will babysit this thread since I know you'll probably need more details to diagnose this.

Domain profile configuration (current):
-------------------------------------------------------------------
Operational mode                  = Enable
Exception mode                    = Enable
Multicast/broadcast response mode = Enable
Notification mode                 = Enable

Service configuration for Domain profile:
Mode     Customized  Name
-------------------------------------------------------------------
Enable   No          Remote Desktop

Allowed programs configuration for Domain profile:
Mode     Name / Program
-------------------------------------------------------------------
Enable   Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Enable   Network Diagnostics for Windows XP / C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

Port configuration for Domain profile:
Port   Protocol  Mode     Name
-------------------------------------------------------------------
3389   TCP       Enable   Remote Desktop

Standard profile configuration:
-------------------------------------------------------------------
Operational mode                  = Enable
Exception mode                    = Enable
Multicast/broadcast response mode = Enable
Notification mode                 = Enable

Service configuration for Standard profile:
Mode     Customized  Name
-------------------------------------------------------------------
Enable   No          Remote Desktop

Allowed programs configuration for Standard profile:
Mode     Name / Program
-------------------------------------------------------------------
Enable   Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Enable   McAfee Framework Service / C:\Program Files\McAfee\Common Framework\FrameworkService.exe
Enable   Network Diagnostics for Windows XP / C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

Port configuration for Standard profile:
Port   Protocol  Mode     Name
-------------------------------------------------------------------
3389   TCP       Enable   Remote Desktop

Log configuration:
-------------------------------------------------------------------
File location   = C:\WINDOWS\pfirewall.log
Max file size   = 4096 KB
Dropped packets = Disable
Connections     = Disable

Bluetooth Network Connection firewall configuration:
-------------------------------------------------------------------
Operational mode                  = Enable

Local Area Connection firewall configuration:
-------------------------------------------------------------------
Operational mode                  = Enable

Wireless Network Connection firewall configuration:
-------------------------------------------------------------------
Operational mode                  = Enable

1394 Connection firewall configuration:
-------------------------------------------------------------------
Operational mode                  = Enable
+1  A: 

The general fix for this is to allow the exception for "Remote Administration" which is built into the firewall. The problem is that WMI uses an RPC endpoint mapper, so multiple ports become involved. http://msdn.microsoft.com/en-us/library/aa389286(VS.85).aspx is probably the definitive discussion on the topic.

Don Jones  2008-12-15 19:00:22
I do have the Remote Administration exception listed in GP for these machines - so it's odd that that's not showing up in the firewall config result. It must be superseded by another GPO or something? Thanks Don!
Doug Chase  2008-12-15 19:07:34
In fact, I just checked gpresult on the remote machine and it lists our Firewall Exception GPO as being successfully applied. However, in the firewall GUI, Remote Administration is not listed as an exception. I'll try to add it manually and then give it another shot.
Doug Chase  2008-12-15 19:12:10
+1  A: 

Don,

I added the Remote Administration exception via the command line with the command

netsh firewall set service type=remoteadmin mode=enable

And received an "Ok." response.

After this, if I display the firewall config, under Domain Profile, the Remote Administration exception is listed. However, under the Standard Profile, it is not listed, and it still does not appear in the firewall GUI exceptions list, and I still cannot talk to WMI.

I don't understand the distinction between the Domain and Standard profiles; why would the Standard profile setting be superseding the Domain profile setting?

Doug Chase  2008-12-15 19:20:37
+1  A: 

The Domain setting should be active when the machine is logged into a domain. The Standard setting when run at other times. As a test, I'd recommend getting this set up in the GUI first - it's easier to see what's going on and confirm that things "took." I'd also add the exception to both profiles - again, as a test. Read the in-product help on the Domain and Standard modes; you'll need to look at some specifics to see which one is active on the machine and the docs offer a good walkthrough.

Don Jones  2008-12-17 03:18:31

related questions

Exposing nested arrays to COM from .NET
How do you unit-test code that interacts with and instantiates third-party COM objects?
Windows Server 2008: COM error: 0x800706F7 - The stub received bad data
Sample code for using IBM's PCOMM in C# o write an as400 screenscraper
Expose an event handler to VBScript users of my COM object
MapPoint 2009 Load Performance
Managed OleDB provider written in C#
What is the best source for information on COM error codes?
How do I return an array of strings from an ActiveX object to JScript
Maintain the correct version for a COM dll referenced in a .NET project
How to do a simple mail merge in OpenOffice
How do you display a dialog from a hidden window application?
Has .NET made raw COM and DCOM programming redundant ?
COMException "Library not registered." while using System.DirectoryServices
What do I need to do to implement an "out of proc" COM server in C#?
How to implement Type-safe COM enumerations in Delphi ?
Notification of drop in drag-drop in Windows
Sharepoint COMException 0x81020037
How do I unregister COM dlls initially added with RegSvr32 when the /u arg doesn't work?
Delphi and COM: TLB and maintenance issues
Is there a method for handling errors from COM objects in RDML?
How to register COM from VS Setup project?
C++ Problems with #import of .NET out-of-proc server.
How to trace COM objects exceptions?
Unload a COM control when working in VB6 IDE