1. General Information
This document describes the permission standard for a Service User (Domain/local) or a specified Group (domain/local) to have scanning permission for the Zero Touch Windows scanning technology.
2. Installation Specifications
Option 1: local Administrator
This is the highest permission level.
Local administrators usually have full permissions to WMI. This User needs to be permitted and rolled out to every device in scope.
Option 2: Grant dedicated permission
This is the lowest permission level.
For granting dedicated permissions to specified Service Users or Groups the following needs to be configured on target system. This can also be done by AD GPO for example.
The following permissions for the specified user or group should be allowed: