05-31-2017 01:33 PM
I'm trying to use OnConnect to perform a WMI probe of client machines when they connect. I have the service set up with a Cisco 2960x on Clearpass 6.6.5. When a client connects, the Access Tracker shows an alert from WebAuthService: "wmi: No credentials to probe host.
Username is empty in the request". I have authorization set up with an AD source that is successfully processing many other requests. Any help would be most appreciated.
05-31-2017 01:58 PM
I revisited that section of the config, and changed the subnet from the user VLAN to the switch VLAN, and that partially fixed the problem. Now the error I get is : "wmi: Skip probe since required port(s)  are not open on host. Username is empty in the request"
This persists if windows firewall has been configured to explicitly allow WMI on 135, and even when windows firewall is turned off. The username for the subnet is definitely not empty.
05-31-2017 02:52 PM