If you are deploying the Impero Client MSI across your network using the Impero Remote Deploy tool, there may be changes required to the Windows Firewall.

 

These settings will need to be applied to every machine you wish to deploy to using Impero. This can be done manually on each machine or network-wide via Group Policy.


 

Individual workstations 


  • Open “Control Panel”.
  • Open “Windows Firewall”.
  • On the left click “Allow a program or feature through Windows Firewall”.
  • Tick the following for all connections: “Remote Service Management” and “Windows Management Instrumentation (WMI)”. 
  • Click “OK”.


Group Policy


  • Open “Group Policy Management” (GPMC.MSC).
  • Edit an appropriate policy.
  • Expand “Computer Configuration > Windows Settings > Security Settings > Windows Firewall with Advanced Security”.
  • Right click on “Inbound Rules” and click “New Rule…”.
  • Select “Predefined” and choose “Windows Management Instrumentation (WMI)”.
  • Ensure that “Windows Management Instrumentation (WMI-In)” and “Windows Management Instrumentation (DCOM-In)” are ticked.
  • Click “Next”.
  • Click “Finish”.
  • Right click on “Inbound Rules” and click “New Rule…”.
  • Select “Predefined” and choose “Remote Service Management”.
  • Ensure that “Remote Service Management (NP-In)” and “Remote Service Management (RPC) are ticked.
  • Click “Next
  • Click “Finish”.