The Remote Registry service is used by many of the Right Click Tools to pull information about a particular device. This service is not enabled by default, but can be easily enabled with Group Policy. When configuring your clients to work with Right Click Tools Enterprise, Remote WMI should also be enabled, and ICMP Echo can be enabled to speed up actions for computers that are offline.
Enabling the Remote Registry Service
By default, ICMP Echo is not allowed through the Windows firewall. This can easily be enabled with Group Policy. Follow these steps to enable ICMP Echo.
Open the Group Policy Management Console and create a new Group Policy Object.
Edit the new Group Policy Object and go to Computer Configuration - Preferences - Control Panel Settings - Services and create a new Service.
Change the Startup type to Automatic. In the Service Name field, browse for the RemoteRegistry service.
- Change the Service Action to Start Service. The service configuration should look similar to this:
- Click OK to save the service. Close the Group Policy Management Editor window.
Firewall Rules for Remote Registry
TCP445 is the only port required for Remote Registry. This can be enabled in Group Policy with the following steps.
Start by creating or editing an existing Group Policy Object. Browse to Computer Configuration - Policies - Security Settings - Windows Firewall with Advanced Security - Windows Firewall with Advanced Security.
Right click on Inbound Rules and choose New Rule. In the New Inbound Rule Wizard, choose Port and click Next.
- On the Protocols and Ports page, choose TCP, and select Specific Local Ports. Enter 445 in the local ports text box. Click Next.
- On the Action page, choose Allow the connection and click Next.
- On the Profile page, choose which firewall profiles you would like the rule to apply to. In general, you should at least select the Domain level. Click Next.
- Finally, give the new firewall rule a descriptive name. Click Finish.