Query management information by using Common Information Model and Windows Management Instrumentation
Offered By: Microsoft via Microsoft Learn
Course Description
Overview
- Module 1: This module covers CIM and WMI technologies to connect to a common information repository that contains management information that you can query and manipulate. The repository contains all kinds of information about a computer system or device, including hardware, software, hardware drivers, components, roles, services, user settings, and just about every configurable item and the current state of that item. An understanding of the framework and syntax of CIM and WMI will help you know and control almost every aspect of an operating system environment.
Upon completion of this module, the learner will be able to:
- Describe the architecture of CIM and WMI.
- Explain the purpose of the repository.
- Explain how to locate online documentation for repository classes.
- Locate online class documentation.
- Module 2: This module explains the structure of the namespaces that contain classes and also how to query instances of a class. It covers how to query remote computers by using ad-hoc connections and CIM sessions.
Upon completion of this module, the learner will be able to:
- List the available namespaces.
- List local repository namespaces.
- Retrieve a list of classes from a namespace.
- Retrieve a list of classes from the root\CIMv2 namespace and sort them.
- Query instances of a specified class.
- Query instances of a specified class by using WMI, CIM, and WMI Query Language (WQL).
- Connect to remote computers by using CIM or WMI.
- Create and manage CIM sessions.
- Query repository classes from remote computers by using CIM sessions objects.
- Module 3: This module explains how to use CIM and WMI to make changes by using methods. The methods available vary depending on the type of object. Discovering and understanding these methods is an important step in querying and manipulating the repository information.
Upon completion of this module, the learner will be able to:
- Discover the methods of repository objects.
- Locate online documentation for methods.
- Locate the methods of the Win32_Service class and their documentation.
- Explain how to invoke methods of repository objects.
- Use methods for the Win32_OperatingSystem and Win32_Process classes.
Syllabus
- Module 1: Module 1: Review CIM and WMI
- Introduction
- Review architecture of CIM and WMI
- Review repositories in CIM and WMI
- Locate online class documentation by using CIM and WMI cmdlets
- Knowledge check
- Summary
- Module 2: Module 2: Query configuration information by using CIM and WMI
- Introduction
- List local repository namespaces and classes by using CIM and WMI
- Query instances by using commands and WMI Query Language
- Connect to remote computers by using CIM and WMI cmdlets
- Query repository classes from remote computers by using CIMSession objects
- Knowledge check
- Summary
- Module 3: Module 3: Query and manipulate repository objects by using CIM and WMI methods
- Introduction
- Discover methods of repository objects by using CIM and WMI
- Locate class methods and documentation by using CIM and WMI
- Invoke methods of repository objects by using CIM and WMI
- Knowledge check
- Summary
Tags
Related Courses
Learn Windows PowerShell in a Month of LunchesYouTube PowerShell for IT Professionals
YouTube Detecting WMI Exploitation
YouTube Investigating PowerShell Attacks
BruCON Security Conference via YouTube Catching WMI Lateral Movement in an Enterprise Network
BruCON Security Conference via YouTube