Without Agent scan method - Windows Firewall settings (deprected)
The without Agent scan method has been retired since Alvao version 25.2.
To enable the without Agent scan method, the following configuration is required.
Setting up the Windows Firewall using the command line
When Windows XP SP2 and above is installed, the Windows Firewall is activated and by default does not allow remote access. The Netsh command is used to set up the Windows firewall. The Netsh command is a command-line scripting tool that interacts with other operating system components through dynamic-link library (DLL) files. How to modify the configuration of firewall services using the Netsh command is explained below.
- No Agent - Enable remote administration. Remote Admin must be enabled for communication between the Collector and the scanned computer, which is disabled by default on the Windows firewall.
Procedure to enable remote admin via command line (Cmd.exe) on the localstation
netsh firewall set service RemoteAdmin enable subnet
If you want to enable remote administration remotely, you can use the freeware utility PsExec and the Cmd.exe command line. Basic PsExec syntax:
psexec [\\computer[,computer[,...]] [-u user] [-p pswd]] cmd
Parameters:
- \\computer - the computer on which cmd will run. If you use \\*, cmd will run on all computers in the current domain.
- -u - the account under which the command will be executed.
- -p - password for the above account.
- cmd - the program to be run.
Example 2. PsExec - Example of enabling remote administration
We want to enable remote administration on a computer with the network name PCOFFICE. Remote administration will be enabled from the entire local network.
psexec \\pcoffice -u administrator_account_name -p administrator_account_name
netsh firewall set service remoteadmin enable subnet
Example 3. PsExec - Example of enabling remote administration
We want to enable remote administration on all computers in the current domain. Remote administration will be enabled from the entire local network.
psexec \\* -u domain_administrator_account_name -p domain_administrator_account_name
netsh firewall set service remoteadmin enable subnet
Example 4. PsExec - Example of enabling remote administration
We want to enable remote administration on all computers in the current domain. The account from which PsExec was started is used. Remote administration will only be enabled from computer 192.168.10.21.
psexec \\* netsh firewall set service remoteadmin enable custom 192.168.10.21
Setting up the Winows Firewall by using Group Policy in Active Directory
When Windows XP SP2 and above is installed, the Windows firewall is activated and does not allow remote access by default. Group Policy is used to set up the Windows firewall.
Setting up the Windows Firewall using Group Policy in Active Directory can only be done on networks with a Windows Server 2008 R2 or higher domain server.
- No Agent - Enable Remote Management - procedure for enabling remote admin using Group Policy in Active Directory.
- Open Start - Run - mmc
- In the tree, select Local Computer - Policies - Computer Configuration - Administrative Templates - Network - Network Connections - Windows Firewall - Domain Profile
- From the list, select Windows Firewall - Enable remote management exceptions. Switch to the Enabled state. If you need more security, enter the Junk Message Sources Allowed field. The IP address or subnet from which messages will be allowed to be received.
 
If you have made settings via Group Policy in Active Directory, you can no longer change these settings via the command line, but again only in Group Policy!
In the "without Agent" mode, if computers are scanned that are split by an internal firewall on the network and yet are in the same domain, the following ports need to be enabled on the firewall:
- WMI - port 135 + <a random port from the dynamic TCP range>, this varies by OS:
- 1024-5000 (Windows 2000, Windows XP, and Windows Server 2003)
- 49152-65535 (Windows Vista and above, Windows Server 2008 and above)
- Remote registry - port 445
- Administrative Disk Sharing - ports 135-139 and 445.
See more articles: