I’d like to enable PSRemoting on client machines in a domain.
I know Group Policy can be used to enable the WinRM listeners and configure the WinRM service and firewall exceptions. According to the “Secrets of PowerShell Remoting” eBook, group policy does not configure PowerShell Endpoints/Session Configurations. How do you do that then in a domain?
I guess I could write a computer startup PowerShell script that runs Enable-PSRemoting except I suppose I’d have to code something in so it doesn’t try and run it on every single boot, perhaps by creating a registry key or flag file and looking for it first! That seems too messy.
What have other people done to sort this? And do you have any security concerns over using just HTTP listeners (ie not HTTPS) on clients?
Thanks for your thoughts!