Re: Troubleshoot remote administration setting in group policy?

I am with G Johansson on this.
I at times see machines using unexpected firewall policy, and
have since taken to defining the remote admin exception in both
firewall policies. You can use netsh firewall context to find out
which policy is in use.
Either that or AD based group policy is not being successfully
applied to these machines at all.

"Anders" <Anders@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:861EC211-5013-4CAE-A3BD-C83F2A61ACC3@xxxxxxxxxxxxxxxx
As a matter of fact I tried the portqry and this is very peculiar since I
found in some instances that nor group policy or "netsh" command did any
help
http://technet2.microsoft.com/windowsserver/en/library/b8057a7a-a0d3-40b5-8224-ea6a4f5e17231033.mspx?mfr=true

Is it possible for users to configure the firewall to dismiss
policy-settings?


"Darren Mar-Elia" wrote:

You can also use the portqry.exe utility (MS download site) to query the
remote system to make sure you can get through on the ports used by WMI,
like 135 and 445.

Darren

--
Darren Mar-Elia
MS-MVP-Windows Server--Group Policy

Script Group Policy Settings with the GPExpert Scripting Toolkit for
PowerShell!
Find out more at http://www.sdmsoftware.com/products2.php

Visit the GPOGUY: http://www.gpoguy.com -- The Windows Group Policy
Information Hub:
FAQs, Training Videos, Whitepapers and Utilities for all things Group
Policy-related

"G Johansson" <fantomen@xxxxxxxxxxxxxxx> wrote in message
news:eL0GEXZ5HHA.4880@xxxxxxxxxxxxxxxxxxxxxxx
In any case you would need to go to the computer but on the first page
make sure that the firewall settings is using the domain profile and
not
the standard profile (if you have only changed in one of course).
You can always open the firewall and check if your settings has been
applied or not...

Thats my best guesses how to solve it...
--
G Johansson
fantomen@xxxxxxxxxxxxxxx

"Anders" <Anders@xxxxxxxxxxxxxxxxxxxxxxxxx> skrev i meddelandet
news:8BBAE726-A8B9-4E1B-8718-462B9A9F2D84@xxxxxxxxxxxxxxxx
Hello, I have an inventory WMI scanning program and in order to enable
scanning of clients with enabled firewalls I have set the domain level
policy
to allow remote administration in the group policy for Windows
firewall.
However, I have noticed that the scanning cannot detect certain
computers
with the firewall enabled so how can I troubleshoot that this firewall
exception policy has indeed propagated to the client?






.

Relevant Pages

  • Re: unable to apply group policy when server is in DMZ
    ... 'Windows cannot query for the list of Group Policy objects. ... Is there a simple firewall between the DMZ and main network, or is it a NAT device? ...
    (microsoft.public.windows.server.active_directory)
  • Re: [fw-wiz] httport 3snf
    ... > Having worked in the Firewall support role at several companies, ... I had my CIO approve my security policy. ... time educating him about Internet risk. ... There's also a very good "at what point is the firewall now useless" ...
    (Firewall-Wizards)
  • Re: Group Policy Results Wizard and XP SP2
    ... The first and easiest is to simply enable the following policy on the target ... Profile|Windows Firewall: Allow Remote Administration ... level ports>1023, which are also used by RPC. ...
    (microsoft.public.windows.group_policy)
  • Re: Troubleshoot remote administration setting in group policy?
    ... group policy had indeed Remote Administration exception enabled. ... Clearly the Remote admin mode is not enabled in the firewall at all so it ...
    (microsoft.public.windows.group_policy)
  • RE: Sandboxing
    ... the 3Com Embedded Firewall would be extremely useful and enabling (in ... your case) when you look at it in a VPN context. ... This security policy will accomplish quite a few things: ... During the Policy Server installation, ...
    (Focus-IDS)