Install Guide

Installing WinRM

On Windows Server, Windows client operating system, and WinRM 2.0 is installed by default. On Windows Server, WinRM 1.1 is installed by

default.

Certicate Authority Signed Self-Signed Certicate

You need a certicate signed by a CA or a self‑signed certicate (generated using the SelfSSL tool) to install and congure the Remote

Enablement feature on the system.

NOTE: It is recommended that you use a certicate signed by a CA.

Using A Certicate Signed By A CA

To use a certicate signed by a CA:

1 Request a valid CA signed certicate.

2 Create a HTTP listener with the CA signed certicate.

Requesting A Valid CA Signed Certicate

To request a valid CA signed certicate:

1 Click Start > Run.

2 Type mmc and click OK.

3 Click File > Add/Remove Snap-in.

4 Select Certicates, and then click Add.

5 In the Certicates snap-in dialog box, select Computer account, and then click Next.

6 Select Local Computer, and then click Finish.

7 Click Close, and then click OK.

8 On the Console window, expand Certicates (Local Computer) in the left navigation pane.

9 Right-click Personal, select All tasks > Request New Certicate.

10 Click Next.

11 Select the appropriate certicate type, Mostly (Computer), and then click Enroll.

12 Click Finish.

Creating The HTTPS Listener With The Valid CA Signed Certicate

Run the installer and click the link on the prerequisite checker to create the HTTPS listener.

NOTE

: The HTTP listener is enabled by default and listens at port 80.

Conguring User Authorization For WinRM And WMI Servers

To provide access rights to WinRM and WMI services, explicitly add users with the appropriate access levels.

Preinstallation Setup