/
AWS WMI Scanning - Access Denied

AWS WMI Scanning - Access Denied

Owned by Daniel Stuart-Kelly
Last updated: Aug 21, 2024 by Bhaver Singh
1 min read

Scenario: Error ā€œAccess Deniedā€ when scanning an AWS Windows machine with a local user account

Ā 

image-20240820-154245.png

Ā 

Ā 

Ā 

Open Group Policy editor and navigate to Computer Configuration -> Windows Settings -> Local Policies -> Security Options

Double click to modify User Account Control: Run all administrators in Admin Approval Mode

Change to Disabled

image-20240820-154417.png

Same can be disabled from registry by running below powershell command.

Set-ItemProperty -Path REGISTRY::HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System -Name EnableLUA -Value 0

REBOOT

I mean actually reboot, dont just say that you rebooted without really rebooting.

Ā 

Test Wbemtest again

Ā 

Ā 

Related content

Testing WMI, RemoteReg, SMB and RemoteCommand
Testing WMI, RemoteReg, SMB and RemoteCommand
Customer Support Knowledge Base
More like this
WBEMTEST: Testing WMI privilege
WBEMTEST: Testing WMI privilege
Customer Support Knowledge Base
More like this
Windows Scanning User Configuration
Windows Scanning User Configuration
Customer Support Knowledge Base
More like this