I'm currently developing a workflow that analyzes drive space for servers, and if it is over the limit, I'm running a windows script that goes to the server and deletes a specific folder structure.

The way I'm doing this is by having a vbscript, that calls a Scheduled task. The scheduled task has a batch file provided by our software dealer, that deletes the unnecessary files.

Our Opmanager server is in the top level domain of our company. The application servers are in a child domain. Opmanager is running as Local System Account.

The WMI account that queries the child domain servers, is domain admin for that child domain.

When I run the workflow against that server, I get permission denied. So, I went to the server, and for testing purposes, I've put the tld computer account as local administrator, and ran the script again.

This time the script ran successfully.

My questions are:

• Shouldn't the windows script be run with the WMI account credentials?
• Not being possible, what are your recommendations over the account I need to have persmissions to run the script?
• Should I change the Local System Account to a domain account and put that account over the Local Admin groups on the child domain servers?
• OR leaving the computer account as Local Administrator on the child domain servers?

Thanks in advance,

Nuno Silva