Help Center

Follow

No network provider accepted the given network path - One possible solution

I am trying to get PDQ Inventory Pro working on my Win2003 server. I can successfully ping the client using IP or FQDN. If I totally disable the firewall on the client (Win 7 Enterprise), I can scan and deploy applications with PDQ Deploy. If the firewall is enabled, I get this message. I have "File and Printer Sharing", "Netlogon Service", "Network Discovery", "Remote Assistance", "Remote Desktop", "Remote Service Management", "WMI", and "Windows Remote Management" enabled for Private and Public profiles. Neither system is joined to a domain

E-Mail : <withheld> 
Error : No network provider accepted the given network path
Error Type : AdminArsenal.Runner.NoNetworkProviderException
License Mode : Pro

No network provider accepted the given network path 

File Path: \\<Withheld>\ipc$
Computer Name: <Withheld> 
Scan Profile: Standard
AdminArsenal.Runner.NoNetworkProviderException
at AdminArsenal.Runner.RemoteRunner.TryAuthenticate()
at AdminArsenal.Runner.RemoteRunner.Authenticate()
at AdminArsenal.Runner.RemoteRunner.Connect()
at AdminArsenal.Runner.RemoteRunner.Process()

 

 There are a couple of systems that ARE reporting to the management console, they all have x.x.199.x ip addresses, same as the server. All other systems outside of that IP subnet can not connect unless the firewall is totally disabled. This is true for Windows XP and 7 clients. I have verified with our networking group that there is NO firewall between the subnets, all of the subnets are originating from the same layer 3 distribution switch. When the PDQ Inventory is installed on my pc (the client in this case), it CAN successfully get the inventory of the win 2003 server with no modification of the firewall settings...

 

I have been using "administrator" but changed it to ".\administrator", no difference. If I disable the firewall entirely on the client PC, things work fine, but with the firewall enabled, no network provider...

Do you have a specific list of ports that might be needed? I have the various firewall exceptions as listed above, they seem more permissive than you require, but I might be missing something.

"File and Printer Sharing"
"Netlogon Service"
"Network Discovery"
"Remote Assistance"
"Remote Desktop"
"Remote Service Management"
"WMI"
"Windows Remote Management"

Are all allowed for both Private (work/home) and public profiles. Do you have a list of specific ports (tcp/udp) I could try one at a time opening up?

Okay, I reset the windows firewall to the default. Enabled "File and Printer Sharing" and started taking the firewall apart at the seams. The initial problem has been resolved, but maybe someone else will run into this, so here is what I discovered!

The command I have been using to enable File/Print services is:
Netsh Advfirewall Firewall Set Rule Group="File and Printer Sharing" New Enable=Yes

It seems that the SCOPE of this command leaves private/public profile set to "local subnet" and domain profile set to "all". To make inventory discovery work, I had to go to the advanced firewall commands, select inbound rules, then go to the following 3 rules and set the scope to "ALL" for public and private profiles:

File and Printer Sharing (NB-Datagram-In)
File and Printer Sharing (NB-Name-In)
File and Printer Sharing (NB-Session-In)

So, I need to modify my script to specifically enable ports 137 udp, 138 udp, and 139 tcp for ALL remote IPs in the public profile.

Thank you for your help in this, and hope I could help some other users of your great software!

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

1 Comments

  • 0

    From dwreese:

    Here are the direct commands needed for XP, Vista, or 7:

    Windows Vista/7: 

    Netsh Advfirewall Firewall Add Rule Name="Ping (ICMPv4)" Dir=In Action=Allow Protocol=Icmpv4:8,Any Description="Ping (ICMPv4)" 

    Netsh Advfirewall Firewall Set Rule Name="File and Printer Sharing (NB-Datagram-In)" New Enable=Yes RemoteIP=Any 

    Netsh Advfirewall Firewall Set Rule Name="File and Printer Sharing (NB-Name-In)" New Enable=Yes RemoteIP=Any 

    Netsh Advfirewall Firewall Set Rule Name="File and Printer Sharing (NB-Session-In)" New Enable=Yes RemoteIP=Any 

    Netsh Advfirewall Firewall Set Rule Group="Remote Desktop" New Enable=Yes

    Windows XP: 

    Netsh Firewall Set Service Type=FileAndPrint Mode=Enable Scope=All 

    Netsh Firewall Set Service Type=RemoteDesktop Mode=Enable

Article is closed for comments.
Powered by Zendesk