Windows 10 machines are getting classified as Window servers
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎11-21-2019 02:18 AM
Hi, I ran discovery of our work environment and the windows 10 machines (desktops/laptops) are getting classified under WIndows servers. WMI classify works and in the ECC Q I am able to see the parameters of Windows 10 machines getting discovered, but these machines are classified under Windows server class. I am on New York version and I run credential less discovery since it's for testing purpose.
13 REPLIES 13
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎11-22-2019 03:22 AM
<results probe_time="4744" result_code="0">
<result>
<output>
{"wmi": {"Win32_ComputerSystem": {"Domain": "WORKGROUP","Name": "DESKTOP-B6DGSFA"},"Win32_OperatingSystem": {"Caption": "Microsoft Windows 10 Pro","Version": "10.0.18362"}},"registry": [{ "Path": "HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\Tcpip\\Parameters","Domain": "","HostName": "DESKTOP-B6DGSFA"}]}
</output>
</result>
<parameters>
<parameter name="mid_selector_details" value="{"mode":"specific_mid"}"/>
<parameter name="agent" value="mid.server.CognixDiscovery"/>
<parameter name="glide.xmlhelper.trim.enable" value="true"/>
<parameter name="use_class" value="discovery_classy_windows"/>
<parameter name="source" value="192.168.0.241"/>
<parameter name="WMI_FetchData" value="root\virtualization\v2\Msvm_ComputerSystem.Name,HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/Tcpip/Parameters/Domain,HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/Tcpip/Parameters/Hostname,root\MSCluster\MSCluster_Resource.PrivateProperties,root\MSCluster\MSCluster_Resource.Name,root\MSCluster\MSCluster_Node.Name,root\MSCluster\MSCluster_Cluster.Name,root\MSCluster\MSCluster_ClusterToResource.GroupComponent,root\MSCluster\MSCluster_ClusterToResource.PartComponent,root\MSCluster\MSCluster_ClusterToNode.Antecedent,root\MSCluster\MSCluster_ClusterToNode.Dependent,root\virtualization\Msvm_ComputerSystem.Name,root\MSCluster\MSCluster_Resource.Type,Win32_ComputerSystem.Domain,Win32_ComputerSystem.Name,Win32_OperatingSystem.Caption,Win32_OperatingSystem.Version"/>
<parameter name="port_probe" value="9802b18f0a0a0703009d322d5b5540e5"/>
<parameter name="sys_id" value="ce0e7749db59c4501d34a9a35b9619bf"/>
<parameter name="from_host" value=""/>
<parameter name="output_format" value="json"/>
<parameter name="sys_created_on" value="2019-11-22 11:20:45"/>
<parameter name="sys_domain" value="global"/>
<parameter name="used_by_discovery" value="true"/>
<parameter name="state" value="ready"/>
<parameter name="probe_name" value="Windows - Classify"/>
<parameter name="discover" value="CIs"/>
<parameter name="response_to" value="820eb3011bdd485046e065f8bc4bcbe0"/>
<parameter name="from_sys_id" value=""/>
<parameter name="priority" value="0"/>
<parameter name="agent_correlator" value="bc0e3749db59c4501d34a9a35b961939"/>
<parameter name="probe" value="b11360600a0a0ba500c41bcbae55c5c4"/>
<parameter name="processed" value=""/>
<parameter name="error_string" value=""/>
<parameter name="sequence" value="16e92d7c8d20000001"/>
<parameter name="port" value="135"/>
<parameter name="cidata" value="<CIData><data><fld name="ip_address">192.168.0.241</fld></data></CIData>"/>
<parameter name="name" value="WMI: Classify"/>
<parameter name="topic" value="WMIRunner"/>
<parameter name="queue" value="output"/>
<parameter name="ecc_queue" value="ce0e7749db59c4501d34a9a35b9619bf"/>
<parameter name="credential_id" value=""/>
</parameters>
</results>
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎11-22-2019 04:43 AM
hi,
Try name contains DESKTOP
Thanks,
Ashutosh
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎11-24-2019 08:50 PM
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎11-27-2019 09:43 PM
Thanks everyone, finally I was successful with one machine with all attributes discovered. While still few machines are classified as Windows servers, many have come under the computer class but no attribute values in the form. on checking the WMI Input, I don't find any information about the computer...................................
This XML file does not appear to have any style information associated with it. The document tree is shown below.
<results probe_time="4704" result_code="3">
<result>
<error>
Authentication failure with the local MID server service credential.
</error>
<error>
Failed to access target system. Please check credentials and firewall settings on the target system to ensure accessibility: Access is denied.
</error>
<debug_info>
{"debug_info":[{"192.168.0.243":{"creds_failed_trying_local_mid_cred":true,"credentials_attempted":[],"local_mid_credential_success":false,"connection_parameters":{"credential_types":["Windows"],"target":"192.168.0.243"}}}]}
</debug_info>
</result>
<parameters>
<parameter name="mid_selector_details" value="{"mode":"specific_mid"}"/>
<parameter name="agent" value="mid.server.CognixDiscovery"/>
<parameter name="glide.xmlhelper.trim.enable" value="true"/>
<parameter name="use_class" value="discovery_classy_windows"/>
<parameter name="source" value="192.168.0.243"/>
<parameter name="WMI_FetchData" value="root\virtualization\v2\Msvm_ComputerSystem.Name,HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/Tcpip/Parameters/Domain,HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/Tcpip/Parameters/Hostname,root\MSCluster\MSCluster_Resource.PrivateProperties,root\MSCluster\MSCluster_Resource.Name,root\MSCluster\MSCluster_Node.Name,root\MSCluster\MSCluster_Cluster.Name,root\MSCluster\MSCluster_ClusterToResource.GroupComponent,root\MSCluster\MSCluster_ClusterToResource.PartComponent,root\MSCluster\MSCluster_ClusterToNode.Antecedent,root\MSCluster\MSCluster_ClusterToNode.Dependent,root\virtualization\Msvm_ComputerSystem.Name,root\MSCluster\MSCluster_Resource.Type,Win32_ComputerSystem.Domain,Win32_ComputerSystem.Name,Win32_OperatingSystem.Caption,Win32_OperatingSystem.Version"/>
<parameter name="port_probe" value="9802b18f0a0a0703009d322d5b5540e5"/>
<parameter name="sys_id" value="68092d871bd5409046e065f8bc4bcb11"/>
<parameter name="from_host" value=""/>
<parameter name="output_format" value="json"/>
<parameter name="sys_created_on" value="2019-11-28 05:37:30"/>
<parameter name="sys_domain" value="global"/>
<parameter name="used_by_discovery" value="true"/>
<parameter name="state" value="ready"/>
<parameter name="probe_name" value="Windows - Classify"/>
<parameter name="discover" value="CIs"/>
<parameter name="response_to" value="1c09e9871bd5409046e065f8bc4bcbf4"/>
<parameter name="from_sys_id" value=""/>
<parameter name="priority" value="0"/>
<parameter name="agent_correlator" value="8ff865871bd5409046e065f8bc4bcbe0"/>
<parameter name="probe" value="b11360600a0a0ba500c41bcbae55c5c4"/>
<parameter name="processed" value=""/>
<parameter name="error_string" value=""/>
<parameter name="sequence" value="16eb083adb60000001"/>
<parameter name="port" value="135"/>
<parameter name="cidata" value="<CIData><data><fld name="ip_address">192.168.0.243</fld><fld name="location">8f7b9c04db4504101d34a9a35b96190e</fld><fld name="name">desktop-i8cp42i</fld><fld name="os_domain">WORKGROUP</fld></data></CIData>"/>
<parameter name="name" value="WMI: Classify"/>
<parameter name="topic" value="WMIRunner"/>
<parameter name="queue" value="output"/>
<parameter name="ecc_queue" value="68092d871bd5409046e065f8bc4bcb11"/>
<parameter name="credential_id" value=""/>
</parameters>
</results>
