I would love to use Windows' native WFP as a FIM (File Integrity Monitoring) solution to help with PCI compliance. I was able to script sfc in powershell for Server 2008 and have it log an event and send an email if a mismatch is detected. I attempted to do something similar for Server 2003 but I have found that I cannot run sfc unless an administrator is logged in. Is is possible to run sfc without having an administratorlogged in on 2003? I have tried running as a scheduled task, disabling the WFP progress bar, and running via psexec but they all fail without an admin logged in.Jeff Graves, ORCS Web, Inc.

did you try to use PSEXEC with the -I switch to start it interactivelly?ondrej.

Yes,I did test that:psexec \\computer -i 0 sfc /scannowAnd it fails with error code 1. I had to use the console session as SFC won't run in anything but.Jeff Graves, ORCS Web, Inc.