SnapCenter Plug-in for Windows Install or upgrade fails with DCOM errors due to CVE-2021-26414
Applies to
- SnapCenter Server
- SnapCenter Plug-in for Windows
- CVE-2021-26414
- Microsoft KB 5004442
Issue
- Snapcenter Plug-in for Windows upgrade fails with the following error message(event ID 10036) in host event logs
Microsoft-Windows-DistributedCOM
10036
The server-side authentication level policy does not allow the user snapcenter\user SID <SID> from address <IP> to activate DCOM server. Please raise the activation authentication level at least to RPC_C_AUTHN_LEVEL_PKT_INTEGRITY in client application.
- SnapCenter flags this as a permissions issue in
SnapManagerWeb.log
Plug-in modification validations failed. Error: The host <hostname> is not accessible with the specified credentials. You must ensure that the following conditions are met: The credential has administrator privileges for the plug-in host. Elevated privileges are required for local user accounts. The required ports are open between SnapCenter Server and the plug-in host if the firewall is enabled. For more information on ports, see SnapCenter Installation and Setup Guide.