Solved

Group Policy and WMI and Windows Firewall

Posted on 2008-06-12
5
15,443 Views
Last Modified: 2013-12-04
I need to be able to enable WMI on all domain computers through Group Policy and also to disable Windows Firewall.  What are the steps to do this?
0
Comment
Question by:dslivingston
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 58

Accepted Solution

by:
tigermatt earned 250 total points
ID: 21772321
To enable the WMI service you can open a Group Policy object, go to Computer Config, Windows Settings, System Services, Windows Management Instruction, view the properties on that entry where you can set it to start Automatically.

For disabling Windows Firewall, you want to disable the setting: Computer Config, Administrative Templates, Network, Network Connections, Windows Firewall, Domain Profile, Protect all Network Connections: Set this policy to 'Disabled'.

-tigermatt
0
 
LVL 79

Assisted Solution

by:arnold
arnold earned 250 total points
ID: 21772368
If you do not have GPMC, get it at: http://www.microsoft.com/windowsserver2003/gpmc/default.mspx
Using the GPMC create a new GPO Disable Firewall.
Then Go through computer configuration\Administrative templates\network\network connections\
Here you will have domain profile and standard profile.  Disable the windows firewall: protect all network connectsion.


What do you mean you want to enable WMI on all, Are you referring to the service?
if so it is also under computer configuration\windows settings\security settings\system services\wmi performance enable it and set it to auto.

Once done, you apply these to the OU or to the entire domain.  Note applying to the entire domain will set this policy on the servers as well as on the workstations.
0
 
LVL 38

Expert Comment

by:Rich Rumble
ID: 21778249
WMI is enabled by default on win2k and up, unless a GP was in place to disable it. You could also, just open certain ports in the firewalls on the lan to allow WMI queries.
There are also some caveats for connecting to wmi, you have to be an admin, and the password cannot be blank. Ports 135 and 445 are all you should need to connect to WMI remotely
http://msdn.microsoft.com/en-us/library/aa389290(VS.85).aspx
http://support.microsoft.com/kb/875605
-rich
0
 
LVL 58

Expert Comment

by:tigermatt
ID: 21780009
Agreed, I guess enabling the service in Group Policy just makes sure it's actually there and running, and more importantly, users cannot disable it.
0
 
LVL 41

Expert Comment

by:graye
ID: 21794663
Are you really asking how to configure the firewall to allow remote WMI sessions?

Or am I "reading between the lines" a too much  :)
0

Featured Post

Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Users of Windows 10 Professional can disable automatic reboots using the policy editor. This tool is not included in the Windows home edition. But don't worry! Follow the instructions below to install (a Win7) policy editor on your Windows 10 Home e…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses

626 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question