<h2>Why is using a domain administrator a prerequisite for discovering Domain Controllers?</h2><br/><div style="overflow-x:auto"><article><div ><h3 >Description</h3><section><div>It is mentioned in ServiceNow official documentation that a domain administrator is required to discover domain controllers:</div> <div><a href="https://docs.servicenow.com/csh?topicname=r_Credentials4HostDiscovery.html&version=latest">Credentials required for host discovery</a></div> <div> </div> <div>Discovery runs remote WMI queries from the MID server while discovering Windows-based machines.</div> <div> </div> <div>For domain controllers, the user running the remote WMI queries should either be included in the domain administrators group or the 'local administrators' group which by default does not exist on a domain controller. This is a Microsoft Active Directory Domain Controller design limitation. </div></section></div></article></div>