A scan of a Windows host fails with the following error in the proxy log: Credentials for localhost\userName are not valid A Windows credential test (using a local account) fails with: Remote login via proxy denied wmic fails with the error "Access denied".
|
Root Cause: Remote UAC is enabled. See http://support.microsoft.com/kb/942817 To confirm: check the following registry keys:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System ->LocalAccountTokenFilterPolicy
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System ->EnableLUA
Solution: Disable the remote UAC by changing the registry setting. Set the value of LocalAccountTokenFilterPolicy key to "1" (DWORD) (create the key if it does not exist).
Also set the value of EnableLUA key to "0" (DWORD). This solution might be needed on Windows Server 2008 / Windows Server 2008 R2 and later versions when using a non-domain user with Administrator privileges on the target host.
If this is not enough to resolve the issue: 1. Click Start and type gpedit.msc in the start search box and press Enter. 2. Navigate to the following location: Computer Configuration/ Windows Settings/ Security Settings/ Local Policies 3. Under this, click on User Rights Assignment. 4. Double click "Access this computer from the network" and check that EVERYONE is added to the list. 5. If not, add it by clicking Add User or group and then type EVERYONE, click OK and then Apply and OK. |