This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(227.2, 86%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH%3C/text%3E%3C/svg%3E)
Hi All,
I want to enable rdp (but only for when people are in office)
I manage to setup the Allow remote remote connection to this computer to be tick
However, i need to enable the built in firewall rules 'Remote Desktop - User Mode (TCP-In)' using intune.
Does anyone can help me?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@hyugai , Based on my test, we can save the following command in ps1 PowerShell script, then deploy the script via Intune to enable the built in windows firewall rule:
Get-NetFirewallRule | where {$_.displayname -eq 'Remote Desktop - User Mode (TCP-In)'} | Enable-NetFirewallRule
Hope it can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
how do i use intune to enable the built in firewall 'Remote Desktop - User Mode (TCP-In)'?
hi thanks for the reply.
So there is no built in intune policy to enable this built in firewall rule in windows 10?
Further, what if i want to enable this firewall rules but the scope profile only for domain profile?
How would the powershell script look like?
@hyugai , Thanks for your reply. Based on my research, currently, in Intune built-in policy, we can build a new firewall inbound rule but no setting to enable the existing firewall rule. Here is a link with more details for your reference:
https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/create-windows-firewall-rules-in-intune
Meanwhile, to enable the firewall rule for domain profile, maybe you can try the similar command as below:
Get-NetFirewallRule | Where {$.Name -eq "Distributed Transaction Coordinator" -and $.Profile -eq "Domain"} | Enable-NetFirewallRule
https://superuser.com/questions/1211976/enable-firewall-rule-with-powershell-for-domain-only
Note: Non-Microsoft link, just for your reference.
Hope it can help.