Asset Management Scan Requirements

Before attempting an asset scan, please confirm that you meet the following requirements:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System

      1. If the LocalAccountTokenFilterPolicy registry entry does not exist, follow these steps:

a. On the Edit menu, point to New, and then click DWORD Value.

b. Type LocalAccountTokenFilterPolicy and then press Enter.

      1. Right-click LocalAccountTokenFilterPolicy and then click OK.

      2. In the Value data box, type 1, and then click OK.

      3. Exit Registry Editor.

For more details on disabling UAC remote restrictions, see http://support.microsoft.com/kb/951016

Windows Firewall Requirements for Hardware Asset Scans

Shavlik Protect scans for hardware assets using WMI in semisynchronous mode. This means the firewall policy only requires DCOM connections from the console machine to the target machines. Asynchronous mode, which would require reverse connections back to the console, are not used.

To scan hardware assets of a machine with Windows Firewall running, you must set that machine’s firewall to allow remote administration. You can configure the firewall via group policy or local command. The local command is:

netsh firewall set service RemoteAdmin enable

If you are unfamiliar with Windows Firewall administration, the following links may help:

http://support.microsoft.com/kb/875605

http://msdn.microsoft.com/en-us/library/aa389286(VS.85).aspx