/
Quick Start Guide: WinRM

Quick Start Guide: WinRM

Owned by Chris Boldiston
Last updated: Apr 02, 2024 by Allan Cornwell
2 min read

Requirements

  • A default installation of Windows Server 2019 Desktop as a target system

  • The target system is not managed in a Domain / GPO

  • Local Administrator access to the target and CIS-CAT server

  • All of the commands listed below should be run in PowerShell as Administrator

Implementation Steps

On the assessment target system (192.168.41.165)

Check and if necessary configure firewall rules to allow for incoming WinRM (TCP 5985) and SMB (TCP 445) from your CIS-CAT Server system.

Allow and confirm remote access to the machine for management with the command;

winrm quickconfig

On CIS-CAT Server system

Within PowerShell add the assessment target IP address to WinRM trusted hosts with this command;

Set-Item WSMan:\localhost\Client\TrustedHosts -Value 192.168.41.165

Run the CIS-CAT Pro Assessor GUI

Select Advanced > Add remote or local target system

Fill out the Information to the required fields;