Guide to Configuring WinRM on MS Windows

Quick guide for configuring WinRM on Windows systems for computers with or without domain in Active Directory.

WinRM on a computer that is not part of an AD domain

This guide is an aid to perform a basic configuration of WinRM, but you will need to adjust the configuration for your environment if you require any particular parameter.

Get-NetConnectionProfile
Set-NetConnectionProfile -Name "MYWIFINETWORK" -NetworkCategory Private
net user administrator /active:yes
net user administrator *
winrm quickconfig
Set-Item WSMan:\localhost\Client\TrustedHosts -Value *
Restart-Service WinRM

 

WinRM on a computer in an AD domain

This guide is an aid to perform basic configuration of WinRM, but you will need to adjust the settings for your environment should you require any particular parameters.

To sum up:

  1. Create a Group Policy object for the Active Directory® (AD) domain to which the computer belongs (note the time it may take for changes to propagate).
  2. Edit the item created in step 1 with the services required for WinRM.
  3. Create rules in the Firewall (of the operating system) to allow the incoming connection.

Creating a Group Policy

Allow Remote Server Management with WinRM

Enable WinRM at startup

Configuring rules in MS Windows Firewall

Add exception for remote administration
Add exception for ICMP
Add input rule

Finally close the Local Group Policy Editor windows.