PowerShell
A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
2,222 questions
Need Help Disabling Windows Firewall Profiles via PowerShell for Ansible Automation
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 61%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Ambika Singh
0
Reputation points
We have a requirement to set Windows Firewall profiles to "off" using Ansible Automation. Despite various attempts, the profiles reset/enabling upon reboot due to Group Policies. I am not able to disable the windows firewall profiles through Powershell or Registry Keys as on rebooting GroupPolicies are taking over and resetting/enabling the Domain, Public and Private Profiles. This is a required step to work with Ansible automation.
Tried the following methods:
PowerShell:
-
Set-NetFirewallProfile -Profile Domain,Public,Private -Enabled False-
%ProgramFiles%\Windows Defender\MpCmdRun.exe -wdenable
- `Set-GPRegistryValue -Name "Firewall Domain Profile" -Key "HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile" -ValueName "EnableFirewall" -Type DWORD -Value 0` - `Set-GPRegistryValue -Name "Firewall Private Profile" -Key "HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile" -ValueName "EnableFirewall" -Type DWORD -Value 0` - `Set-GPRegistryValue -Name "Firewall Public Profile" -Key "HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile" -ValueName "EnableFirewall" -Type DWORD -Value 0` -
- Ansible Module:
-
win_firewall: -
state: disabled -
profiles:- `Domain` - `Private` - `Public`
-
{count} votes
-
MotoX80 32,526 Reputation points2024-06-16T13:32:17.83+00:00 If the firewall is blocking some network traffic, just define a rule that allows that traffic.
-
Ambika Singh 0 Reputation points
2024-06-17T22:58:22.95+00:00 Thanks @MotoX80 for the reply but my requirement is to make all profiles off in windows advanced firewall setting via PowerShell or RegistryKeys so that i can use it in Ansible automation.
-
MotoX80 32,526 Reputation points
2024-06-18T00:32:56.67+00:00 I am not familiar with Ansible. Can you explain what the issue is?
Is network traffic being blocked?
Is this local group policy or Active Directory domain policy?
What output does this command produce?
reg.exe query HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall /s
Sign in to comment