Security Controls

ITScripts Options

The ITScripts Options dialog enables you to specify how the console will connect with remote target machines.



If you want the console to contact the target machines using an SSL connection, enable this check box.

In addition, each target machine must contain a signed certificate and a WinRM HTTPS Listener.


Specifies the port used by the console when contacting the target machines. The default value is as follows:

If you are NOT using SSL the default value is 5985

If you ARE using SSL the default value is 5986

Local Administrator credential to modify local TrustedHosts

Only shared credentials are contained in this list. If the credential you are looking for is not listed it probably means it is not defined as a shared credential. See Defining Credentials for information on how to share a credential.

Select the credential (the user name and password pair) to use if it is necessary for Security Controls to temporarily add a target machine to the console's TrustedHosts list.

Here's why this might be needed. The WinRM services establish trust with one another in one of three ways: (1) Kerberos (on domains), (2) trusted certificates (SSL / HTTPS transport), or (3) the target machine appears in the console's TrustedHosts list. If you are not using Kerberos or HTTPS and want to execute scripts that require remoting, you must supply a credential with administrative privilege in order for Security Controls to be able to temporarily access and modify the console's TrustedHosts list.

This is generally necessary only if the console is part of a workgroup rather than a domain. In this case, it is also necessary that the TrustedHosts list on the console contains the name of the computer that the console is running on. You can make this one-time change by entering the following command at a PowerShell prompt when logged in as an administrator:

Set-Item WSMan:\localhost\client\TrustedHosts <console_name>

You can verify the value of TrustedHosts by entering the following command:

Get-Item WSMan:\localhost\client\TrustedHosts



Was this article useful?