PS Remoting/WinRM Services

Rising Flight 5,216 Reputation points
2023-12-30T11:27:49.5033333+00:00

Hi All

I have a requirement to Disable or Harden PowerShell Remoting and WinRM Services.The impact what i see is one server cannot connect to another server using remote powershell scripts. Please also let me know what possible issues we can come across by disabling this.

Computer Configuration-->Policies-->Administrative Templates-->Windows Components-->Windows Remote Management (WinRM)-->WinRM Service-->Allow remote server management through WinRM-->Enable

I would prefer to go with enabling it rather than disabling and adding the required ip addresses.if i go with the above approach do also i need to allow those ips in windows firewall by creating inbound rule or connection security rules.

Computer Configuration-->Policies-->Windows Settings-->Security Setting-->Windows Firewall with Advanced Security-->Inbound Rules-->New Rule-->Predefined-->Windows Remote Management-->Allow the connection
under scope--specify remote ip addresses.

Do i also need to create Connection security rules i.e for Authentication bypass rules (IPsec) for restricting WinRM:

Computer Configuration-->Policies-->Windows Settings-->Security Settings-->Windows Firewall with Advanced Security-->Connection Security Rules

Windows for business | Windows Server | User experience | PowerShell
Windows for business | Windows Server | User experience | Other
Windows for business | Windows Server | Devices and deployment | Configure application groups
{count} votes

2 answers

Sort by: Most helpful
  1. Rising Flight 5,216 Reputation points
    2024-01-03T20:04:41.01+00:00

    What issues i can come across if i disable winrm service.

    0 comments No comments

  2. Rising Flight 5,216 Reputation points
    2024-11-29T04:53:02.4+00:00

    i am unable to mark as answer

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.