Modify
Enable/Disable Remoting
Enable-PSRemoting -Force
Enables PowerShell remoting on the computer, configuring it to receive remote commands securely.
Disable-PSRemoting -Force
Disables PowerShell remoting, preventing the computer from receiving remote commands.
Set-WSManQuickConfig -Force
Configures the computer to use Windows Remote Management (WinRM) with default settings, including security settings.
Security Descriptor
Modifies the security descriptor of the default PowerShell session configuration, launching a UI to edit permissions.
Set-PSSessionConfiguration -Name Microsoft.PowerShell -ShowSecurityDescriptorUIAuthentication
Enables Basic authentication for the WinRM service.
winrm set winrm/config/service/Auth '@{Basic="true"}'Enables Credential Security Support Provider (CredSSP) authentication for the WinRM client.
winrm set winrm/config/client/Auth '@{CredSSP="true"}'Encrypted Traffic
Disables the allowance of unencrypted traffic for the WinRM service using PowerShell.
Toggle unencrypted communication for WinRM service and WinRM client, enforcing encrypted traffic:
Disables unencrypted traffic for WinRM at the registry level, enhancing security:
Firewall
Creates a new firewall rule to allow inbound connections on port 5986 for WinRM over HTTPS, increasing security:
Removes firewall rules for WinRM HTTP traffic, enhancing security by disallowing unencrypted remote management traffic.
Enables the firewall rule for inbound RDP connections, controlling access security:
TrustedHosts
Adding a single item to TrustedHosts:
Adding multiple items:
Appends the Value instead of changing it:
Configures the WinRM client to trust specific hosts, enhancing security by limiting remote connections.
Last updated
Was this helpful?