Does the FDCC SCAP content utilize WMI? Can the use of WMI cause issues?
Some setting value checks in the SCAP content use WMI, specifically, the Resultant Set of Policies (RSOP) namespace. For example, this is the only public application programming interface (API) for checking the value of Network access: Allow anonymous SID-Name translation. The Internet Explorer Maintenance Policy Processing and the Kerberos settings are also checked in this manner. NIST is not aware of any accuracy issues related to using WMI, however it can be slightly slower than examining examining registry other methods.