I updated the WMI Whitelist macro to reflect the field names for the Whitelist. It listed process_path pipe_name (appears to have been a copy of the pipe_whitelist verbiage. These were removed and replaced with user_name wmi_consumer_name wmi_consumer_destination which should match the fields reflected in the WMI Whitelist view.
olafhartong
commented
4 years ago
I updated the WMI Whitelist macro to reflect the field names for the Whitelist. It listed
process_path pipe_name(appears to have been a copy of thepipe_whitelistverbiage. These were removed and replaced withuser_name wmi_consumer_name wmi_consumer_destinationwhich should match the fields reflected in the WMI Whitelist view.