Minimum WMI Permissions for Local User Account

To allow the user account to be used as a service account with limited permissions, remote WMI access must be enabled.

First, add the user account to the local group named "Performance Log Users" and “Event Log Readers”.

Next, set up the access permissions for the user account in the WMI Control configuration:

1.Open the WMI Control console: Click Start, choose Run and type wmimgmt.msc, then click OK.

2.In the console tree, right-click WMI Control and then click Properties.

3.Click the Security tab.

Select the “\Root\CIMV2” namespace to choose which user or group will have access, and then click on Security.

In the Security dialog box, click Add.

In the Select Users, Computers, or Groups dialog box, enter the name of the object (user or group) that you want to add, click OK and then choose Advanced.

In the Advanced Security dialog box under Permissions, edit the permissions and check the “Enable Account” and “Remote Enable” boxes. Select Apply to “This namespace and subnamespaces”:

Click OK 4 times to close all the windows.

And now you’re finished! The user now has remote access to WMI information.