How to audit servers located in another subnet behind firewall

Windows Server
6.5 and older
Copy Article URL Copied

Netwrix Auditor For Windows Servers (NetWrix Server Configuration Change Reporter in 6.5 or older) does not work with systems on different subnets.The following errors appear:
<server> : Error during agent operation on server <server>. Cannot open Service Control Manager on computer ‘<server>’. This operation might require other privileges. Additional information: The RPC server is unavailable .
<server> : Error during agent operation on server <server>. The RPC server is unavailable. (Exception from HRESULT: 0x800706BA). Additional information: none.
<server> : Error during agent operation on server <server>. Check if .Net Framework is installed error. Additional information:  none.

One of the required ports is blocked by Firewall.

To resolve the issue, make sure the following ports are opened:

  1. TCP 135 and TCP 445 are opened both ways.
  2. Dynamic RPC ports range are opened from the server where the Netwrix product is installed to the monitored server. The product uses these ports to connect to the monitored servers and launch the agent services. You can open the ports in two ways:
  • Open the following TCP ports range on your Firewall:

for Windows Vista/7/2008: 49152-65535
for Windows XP/2003: 1024-5000

Go Up