Lansweeper Deploy through GPO

tabork · ‎05-24-2010

We are trying to inventory about 200 Computers in our company. I tried to deploy the firewall settings through logon script. However 98% of our users are power users and are unable to change firewall settings. Could I just turn off the windows firewall though GPO?

Hemoco · ‎06-03-2010

Maybe this can help : http://www.windowsitpro.com/article/permissions/adding-startup-scripts-to-gpos.aspx

tabork · ‎06-03-2010

Can you give me an example of how to format that?

Hemoco · ‎06-03-2010

You can try a startup script instead of a logon script, this runs as local system privileges.

tabork · ‎06-02-2010

Is there anyting else I need to have enabled for the GPO to work? I have it exactly like the guide says.

Really what I am running into is that when the logon script tries to execute, I get an Access Denied Error. Is there a way run the following commands as an administrator while the user is logging on?

call netsh firewall set service RemoteAdmin enable
call netsh firewall add portopening protocol=tcp port=135 name=DCOM_TCP135
call netsh firewall add allowedprogram program=%windir%\system32\wbem\unsecapp.exe name=WMI
call netsh firewall add allowedprogram program=%windir%\system32\dllhost.exe name=Dllhost

Hemoco · ‎05-26-2010

You can use active scanning or scheduled scanning but if the firewall is blocking the scan it won't make any difference.

tabork · ‎05-25-2010

I have tried this, however it didnt seem to work. Is there a way to have it scan without having to run a logon script?

Hemoco · ‎05-24-2010

Yes, see here: http://www.lansweeper.com/kb/firewall.aspx

Lansweeper Deploy through GPO

New to Lansweeper?

Try Lansweeper For Free