GISCOOBY
asked on
Remote Computer Management on Windows 7
I am attempting to remotely manage Windows 7 machines within a SBS2008 domain environment. When I connect to remote machines using a domain administrator account, Computer Management opens fine, but when I attempt to view Device Manager I get the error "Unable to access the computer COMPUTERNAME. Make sure that this computer is on the network, has remote administration enabled, and is running the 'Plug and Play' and 'Remote Registry' services. The error was: Access is denied." This computer is running those two listed services. I am not sure how to check for remote administration outside of RDP access (which is enabled). The domain policy disables the Windows firewall within the corporate network, so I wouldn't expect exceptions are needed. I verified that the Domain Administrators group is a part of the computer's local admin group. I am able to connect to XP machines using the same method without error. What can I do to enable this access or is this locked in Win7?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Hi, this may sound stupid but is the Firewall disabled for the correct connection, you can have a firewall enabled for each connection type, Home, Office and Public Network.
I stupidly made this mistake before, however aswell as disabling the firewall I also included exceptions for the ports 'Remote Management' uses then forced a GP update on all of the machines. This enabled me to remotley manage the Windows 7 machines, I still cannot 'Fully' remotley manage XP machines in this manner.
Hope you find a solution.
I stupidly made this mistake before, however aswell as disabling the firewall I also included exceptions for the ports 'Remote Management' uses then forced a GP update on all of the machines. This enabled me to remotley manage the Windows 7 machines, I still cannot 'Fully' remotley manage XP machines in this manner.
Hope you find a solution.
ASKER
Thank you for the input. To ensure that this wasn't the case, I did verify the machines Windows Firewall with Advanced Security profile settings. The Windows Firewall is set to turn on, on all profiles except the Domain Profile, which is the active profile. Is it even possible to view the Windows 7 Device Manager remotely?
ASKER
I was able to find the final solution based on ALECHEV's link. The final solution was based on the article "http://blogs.technet.com/s erver_core /archive/2 008/01/14/ configurin g-the-fire wall-for-r emote-mana gement-of- a-workgrou p-server-c ore-instal lation.asp x", which indicated that I needed to add a Group Policy as follows:
To allow Device Manager to connect, you must first enable the “Allow remote access to the PnP interface” policy<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com :office:of fice" />
1. On a Windows Vista or full Server installation, start the Group Policy Object MMC snap-in
2. Connect to the Server Core installation
3. Navigate to Computer Configuration\Administrati ve Templates\Device Installation
4. Enable “Allow remote access to the PnP interface”
5. Restart the Server Core installation
To allow Device Manager to connect, you must first enable the “Allow remote access to the PnP interface” policy<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com
1. On a Windows Vista or full Server installation, start the Group Policy Object MMC snap-in
2. Connect to the Server Core installation
3. Navigate to Computer Configuration\Administrati
4. Enable “Allow remote access to the PnP interface”
5. Restart the Server Core installation
ASKER
I was able to find the final solution based on ALECHEV's link. The final solution was based on the article "http://blogs.technet.com/server_core/archive/2008/01/14/configuring-the-firewall-for-remote-management-of-a-workgroup-server-core-installation.aspx", which indicated that I needed to add a Group Policy as follows:
To allow Device Manager to connect, you must first enable the “Allow remote access to the PnP interface” policy<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com :office:of fice"
1. On a Windows Vista or full Server installation, start the Group Policy Object MMC snap-in
2. Connect to the Server Core installation
3. Navigate to Computer Configuration\Administrati ve Templates\Device Installation
4. Enable “Allow remote access to the PnP interface”
5. Restart the Server Core installation
To allow Device Manager to connect, you must first enable the “Allow remote access to the PnP interface” policy<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com
1. On a Windows Vista or full Server installation, start the Group Policy Object MMC snap-in
2. Connect to the Server Core installation
3. Navigate to Computer Configuration\Administrati
4. Enable “Allow remote access to the PnP interface”
5. Restart the Server Core installation
ASKER