Questions

disable windows firewall on a remote machine

Tags:
+
0 Votes
Locked

disable windows firewall on a remote machine

miro-125
I had a problem with a remote machine in my domain. to sole that problem I had to disjoin that remote machine from my domain using the remote desktop. that remote machine asked me to restart to complete dis joining. then I tried to connect to that machine again to re-join it my domain I discovered that the windows firewall is closed.
and I am so far from that remote machine and I am in need to disable the windows firewall so I could reconnect it again using VNC or remote desktop whatever to re join it again. what should I do?
  • +
    0 Votes
    CG IT

    once you disjoin the machine from the domain, local security policies are the only ones that get applied. Disjoining the client from the domain shouldn't change the Windows Firewall default settings and if remote desktop is enabled, you should be able to gain access using the local machine administrators account.

    +
    0 Votes
    ugadata

    If access continues to be denied, It may help to try logging out from the domain and log in using the local admin account (non-domain) and see if that helps any.

    It may also help to be part of the same workgroup as the remote PC in question.

    +
    0 Votes
    miro-125

    does that mean that no way even using some script or CMD comand line to change the status of the windows firewall remotly ?
    I must be on that machine but noting could be helpfull remotly in that case?

    :)
    that mean I should travel man

    +
    0 Votes
    miro-125

    does it mean there is no other reply even using some script or a cmd command line to re open the windows firewall?

    should I be in the site in that case?

    if I should that will mean that I have to travel
    :)

    +
    0 Votes
    TonytheTiger

    then stop the firewall?

    +
    0 Votes
    ugadata

    When I say logon to the local administrator account, I did mean you had to be sitting at the machine in question.

    I meant more in the logon to machine A as a local admin to machine A then try to remote admin machine B. Because you have a DOMAIN and the remote machine is no longer part of the DOMAIN, the DOMAIN ADMINISTRATOR no longer hold any sway as far as machine B is concerned.

    Ideally the local admin account (username/password) is the same on both machines.

    +
    0 Votes
    leo_n2s

    I think you are looking for this answer.. it might be a bit late, but i just had the same problem... and could solve it... the commands are; juts type the following in CMD prompt:

    netsh firewall set service type = REMOTEADMIN mode = disable scope = CUSTOM addresses = 127.0.0.1

    change the address to the machine u wanna manipulate...

    +
    0 Votes
    vadodsantos

    From what I have learnt on Internet so far, it seems to have a solution only from group policy if the machine belongs to a domain.

    Otherwise, Windows firewall blocks all the remote access I know to take control of the machine in a regular way. I can't even know its IP address through ping over its name because the command is blocked.

    I am looking for a similar solution. Could you please explain better your idea ?

    Thank you,

    Osvaldo.

    +
    0 Votes
    DanHL

    The implementation of this command will only disable Remote Administration in your local firewall settings.

  • +
    0 Votes
    CG IT

    once you disjoin the machine from the domain, local security policies are the only ones that get applied. Disjoining the client from the domain shouldn't change the Windows Firewall default settings and if remote desktop is enabled, you should be able to gain access using the local machine administrators account.

    +
    0 Votes
    ugadata

    If access continues to be denied, It may help to try logging out from the domain and log in using the local admin account (non-domain) and see if that helps any.

    It may also help to be part of the same workgroup as the remote PC in question.

    +
    0 Votes
    miro-125

    does that mean that no way even using some script or CMD comand line to change the status of the windows firewall remotly ?
    I must be on that machine but noting could be helpfull remotly in that case?

    :)
    that mean I should travel man

    +
    0 Votes
    miro-125

    does it mean there is no other reply even using some script or a cmd command line to re open the windows firewall?

    should I be in the site in that case?

    if I should that will mean that I have to travel
    :)

    +
    0 Votes
    TonytheTiger

    then stop the firewall?

    +
    0 Votes
    ugadata

    When I say logon to the local administrator account, I did mean you had to be sitting at the machine in question.

    I meant more in the logon to machine A as a local admin to machine A then try to remote admin machine B. Because you have a DOMAIN and the remote machine is no longer part of the DOMAIN, the DOMAIN ADMINISTRATOR no longer hold any sway as far as machine B is concerned.

    Ideally the local admin account (username/password) is the same on both machines.

    +
    0 Votes
    leo_n2s

    I think you are looking for this answer.. it might be a bit late, but i just had the same problem... and could solve it... the commands are; juts type the following in CMD prompt:

    netsh firewall set service type = REMOTEADMIN mode = disable scope = CUSTOM addresses = 127.0.0.1

    change the address to the machine u wanna manipulate...

    +
    0 Votes
    vadodsantos

    From what I have learnt on Internet so far, it seems to have a solution only from group policy if the machine belongs to a domain.

    Otherwise, Windows firewall blocks all the remote access I know to take control of the machine in a regular way. I can't even know its IP address through ping over its name because the command is blocked.

    I am looking for a similar solution. Could you please explain better your idea ?

    Thank you,

    Osvaldo.

    +
    0 Votes
    DanHL

    The implementation of this command will only disable Remote Administration in your local firewall settings.