Windows WinRM over HTTPs

Windows Remote Management is no longer a way to think in today’s world. But why do we do it unencrypted? Normally the authentication is done by Kerberos. That’s secure enough for most people. However, Kerberos also has limitations, for example when using local accounts.

In the standard system, communication is via HTTP via TCP port 5985. Why not HTTPS? This is possible, the port TCP 5986 is intended for this. Unfortunately, this is not only missing in the firewall rule templates but also has a few barriers still in the way. We take care of these barriers today.

Continue reading “Windows WinRM over HTTPs”

Administrative templates in Intune – incl. list

In January 2019 I reported about the preview of the administrative templates in Intune. Now it’s time to see what happened. Meanwhile, the function is no longer in the preview phase and it has grown too.

Continue reading “Administrative templates in Intune – incl. list”