How to discover Windows XP SP2 workstations with Windows Firewall Enabled

  • 7920577
  • 15-May-2006
  • 27-Apr-2012


PlateSpin Migrate
PlateSpin Protect
PlateSpin Forge



The following article outlines the required procedures for discovering Windows XP SP2 workstations with Windows Firewall enabled.



In order to discover server details, PowerConvert will utilize the remote machine’s WMI. WMI uses (RPC/DCOM) which use TCP ports 135 and 445 as well as random/dynamically assigned ports above 1024. For more information on the ports being used by PowerConvert, please see TID 7920341

Windows Firewall does not support dynamic TCP/UDP ports exceptions and in order to discover servers which use Windows Firewall Microsoft recommends performing one of the following:

Option 1 - Using NETSH:

  1. On the remote Server, click Start Run and type: cmd to open command prompt
  2. In command prompt type netsh firewall set service RemoteAdmin enable and click Enter

Option 2 - Using Group Policy Editor:

  1. On the remote Server, click Start Run and type: gpedit.msc to open Group Policy Editor
  2. Under the Local Computer Policy heading, open the Computer Configuration folder
  3. Open the Administrative Templates folder
  4. Open the Network folder
  5. Open the Network Connections folder
  6. Open the Windows Firewall folder
  7. If the computer is in the domain, then open the Domain Profile folder; otherwise, open the Standard Profile folder
  8. Click Windows Firewall: Allow remote administration exception
  9. On the Action menu, select Properties
  10. Click Enable, and then click OK

For more details and for alternative method (using scripts), please refer to the following MSDN article:

** Please be advised that the above has not been certified by PlateSpin and the information is provided as it.