RunAs Network Inventory


Steel Network Inventory :: FAQ

Q: Why does the audit reports my Intel Core 2 Duo processor as Intel Pentium III or Xeon?
This mis-interpretation is due to wmi issue in XP. Please check the microsoft site url KB953955 for the hotfix which fixes this issue.

Q: Why do some hosts report "Access Denied" messages when I try to perform remote audit?
Access denied error states that the credentials which is being used to do a remote audit is not being accepted by the remote host. This means the username and password being used while logging in the computer or being supplied in as "alternate credentials" when used to perform audit is not having enough permissions to run a WMI query on the remote host.

Please make sure you are supplying credentials which has sufficient privileges in the network/domain before performing an remote audit. Please refer to the "Troubleshooting" section in the help file of Steel Network Inventory for detailed steps.

Computer running XP or Vista when not a part of a domain do not allow local administrator to authenticate as himself and is forced as "Forced Guest" account instead. For performing an remote audit on these computers administrator priviledges are needed. This can be enabled easily simply by disabling "Use simple file sharing" option in the folder options.

If the computer is running Vista, One more step along with the above procedure should be done. The "User Account Control" UAC has to be disabled to allow remote audits to be perfromed. Please check the following link for more details for disabling the UAC UAC in Vista


Q: Win XP, Vista , Win 7 and Win 8 showing "Access Denied" errors while auditing
Systems running on Windows XP, Vista, 7, or 8 which are not connected to a domain controller won't allow local administrator to login as remote audit user. It instead enforces "ForceGuest" policy" which triggers the error. Administrator rights are needed to perform audits. If your computers are not part of a domain then the following steps need to be performed in each computer.

Create text file and rename it as settings.reg and copy the below contents and after saving the file, right click and select "Merge". Restart the computer. Now it must be ready for audits.

Windows XP

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"forceguest"=dword:00000000

Windows 7 and 8

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"forceguest"=dword:00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\system]
"LocalAccountTokenFilterPolicy"=dword:00000001

Q: Why does some hosts report error "RPC Server Unavailable"?
The remote procedure call service denial is the reason for this error. The error means that the firewall settings is not allowing this machine to be queried remotely. This error is generally pertaining to remote hosts running Windows XP with Service Pack 2 or above. To enable the firewall to allow the remote WMI query please follow the steps below..

Open the command prompt in the remote host and type

netsh firewall set service remoteadmin

Try performing audit. If still unsuccessful then Open the command prompt again in the remote host and type

netsh firewall add portopening protocol=tcp port=135 name=DCOM_TCP135

If the problem persists and if the remote computer is running on Vista or Windows 7 then execute the below command in the command prompt

Netsh advfirewall set currentprofile settings remotemanagement enable

Steel Run As :: FAQ

Q: How do I run MMC's like Dsa.msc in administrator mode? Why does the output executable gives error when run with alternate credentials?

MMC applications have to called using a batch file. Make a batch file calling the MMC application. Make a target executable to call the batch file. For safety reasons the batch file must be placed in a safe read-only server share.

Q: Does Steel Run As work with ADS based domain authentications?
Yes it works.

Q: Is the credentials saved in the target executable safe? What is the encryption standards used?
The credentials supplied while creating the executable is safe as it is encrypted using RC4 with Psuedo Random Seed algorithm.

Q: What is the guarantee that my end user won't change the target program while executing the exe?
Steel Run As uses MD5 checksum verification for identifying the target executable. No two files can have same MD5 checksum as this unique for each file. If the end user changes the target program executable then the application would fail with an error message.

Q: Why does my target executable fails even with proper username and password credentials in Vista and Windows 7?
Steel Run As executable is perfectly compatible on both Windows 7 and Vista. Please ensure the target working directory is supplied when creating the executable. In Windows XP it is not mandatory to supply working directory, In Vista and Windows 7 it is mandatory.

Q: How do I use environmental variables like %WINDIR% or %USERNAME% in the command line?
The command line which needs the environmental variables to be used needs to be called like shown in the example below

CMD /C %WINDIR%\Notepad.exe

Ensure to start the command line with "CMD /C"

If the above FAQ does not answer your query please write to support@steelsonic.com for more assistance.