GPO: Enable-PSRemoting

less than 1 minute read

Description:

Follow these steps to enable PowerShell remoting via GPO.

To Resolve:

  1. On the DC, create a new domain policy.

  2. Edit the newly created GPO.

  3. Navigate to: Computer Configuration\Policies\Administrative Templates\Windows Components\Windows Remote Management WinRM Service

  4. Open the “All remote server management..” policy and change it to “enabled” and set the filters for IPv4/6 to “*”.

gpo-enable-psremoting-1
  1. Now we need to configure the firewall. Navigate to: Computer Configuration\Policies\Windows Settings\Security Settings\ Windows Firewall\Inbound Rules

  2. Right click – Create A New Rule – Predefined: Windows Remote Management – Keep defaults for next screens and finish.

gpo-enable-psremoting-2
  1. Now, in the same tree that you are in, navigate up to “System Services”. Select “Windows Remote Management” Service – check “define this setting” and set it to automatic.

  2. Navigate back up to: Computer Configuration\Preferences\Control Panel Settings\Services.

  3. Right click- New: Service – General Tab: Startup=No Change, ServiceName=WinRM, ServiceAction(optional)=Start Service – Recovery tab – set all 3 dropdowns to “restart the service”.

  4. Done. Run gpupdate on the domain controller and wait for it to be pushed to the clients.

References:

http://blogs.technet.com/b/poshchap/archive/2014/07/04/powershell-remoting-considerations.aspx
http://www.briantist.com/how-to/powershell-remoting-group-policy/