I posted two PowerShell scripts thanks to some work Karl Mitschke did on his blog. These scripts focus on automating the tedious manual tasks necessary to set DCOM and WMI permissions when deploying FIM Self-Service Password Reset. Digging out all of the places and bits to set is not fun especially when you have multiple environments and servers to run it on.
The scripts will only add the ACE if it's not present and will update an existing ACE for the same security principal; it will also tell you if the existing permissions are correct!
- Using PowerShell to Set WMI Permissions for FIM Self-Service Password Reset
- Using PowerShell to Set DCOM Permissions for FIM Self-Service Password Reset
The posts are in the FIM 2010 TechNet Forum, enjoy!