Hello all - I'm running the following command on as Windows 2008 server to create connection security rule between 2 devices. netsh advfirewall consec add rule name=".SecRule" endpoint1="192.168.0.1" endpoint2="192.168.0.2" action=requireinrequestout protocol=any interfacetype=any When you check the properties of the rule -> Authentication -> Method, Advanced is selected with Computer (Kerb V5) for the first authentication. Does anyone know how to select Method -> Default from the script? There is a simular post here but no real answer http://social.technet.microsoft.com/Forums/en-US/winserversecurity/thread/0d972d07-8089-4416-a1f6-0df7f4593b6c/ Any help would be appreciated. Regards Sarty

Hi, Thanks for your post. Please note that the Default authentication method is Computer (Kerberos V5). If we not specify authentication method in script, it will be Computer (Kerberos V5) in Advance. In command-line is auth1=computerkerb. From the script, we must specific which authentication method to be used. We cannot like the UI directly choose Default method. For more detailed information about authentication method choose. As the previous post, please check the following options. (Default) [auth1=computerkerb|computercert|computercertecdsap256| computercertecdsap384|computerpsk|computerntlm|anonymous[,...]] [auth1psk=<string>] [auth1ca="<CA Name> [certmapping:yes|no] [excludecaname:yes|no] [catype:root|intermediate (default=root)] |..."] [auth1healthcert=yes|no (default=no)] [auth1ecdsap256ca="<CA Name> [certmapping:yes|no] [excludecaname:yes|no] [catype:root|intermediate (default=root)] | ..."] [auth1ecdsap256healthcert=yes|no (default=no)] [auth1ecdsap384ca="<CA Name> [certmapping:yes|no] [excludecaname:yes|no] [catype:root|intermediate (default=root)] | ..."] [auth1ecdsap384healthcert=yes|no (default=no)] [auth2=computercert|computercertecdsap256|computercertecdsap384| userkerb|usercert|usercertecdsap256|usercertecdsap384|userntlm| anonymous[,...]] [auth2ca="<CA Name> [certmapping:yes|no] [catype:root|intermediate (default=root)] | ..."] [auth2ecdsap256ca="<CA Name> [certmapping:yes|no] [catype:root|intermediate (default=root)] | ..."] [auth2ecdsap384ca="<CA Name> [certmapping:yes|no] [catype:root|intermediate (default=root)] | ..."] Best Regards, AidenAiden Cao TechNet Community Support

Hi, Thanks for your post. Please note that the Default authentication method is Computer (Kerberos V5). If we not specify authentication method in script, it will be Computer (Kerberos V5) in Advance. In command-line is auth1=computerkerb. From the script, we must specific which authentication method to be used. We cannot like the UI directly choose Default method. For more detailed information about authentication method choose. As the previous post, please check the following options. (Default) [auth1=computerkerb|computercert|computercertecdsap256| computercertecdsap384|computerpsk|computerntlm|anonymous[,...]] [auth1psk=<string>] [auth1ca="<CA Name> [certmapping:yes|no] [excludecaname:yes|no] [catype:root|intermediate (default=root)] |..."] [auth1healthcert=yes|no (default=no)] [auth1ecdsap256ca="<CA Name> [certmapping:yes|no] [excludecaname:yes|no] [catype:root|intermediate (default=root)] | ..."] [auth1ecdsap256healthcert=yes|no (default=no)] [auth1ecdsap384ca="<CA Name> [certmapping:yes|no] [excludecaname:yes|no] [catype:root|intermediate (default=root)] | ..."] [auth1ecdsap384healthcert=yes|no (default=no)] [auth2=computercert|computercertecdsap256|computercertecdsap384| userkerb|usercert|usercertecdsap256|usercertecdsap384|userntlm| anonymous[,...]] [auth2ca="<CA Name> [certmapping:yes|no] [catype:root|intermediate (default=root)] | ..."] [auth2ecdsap256ca="<CA Name> [certmapping:yes|no] [catype:root|intermediate (default=root)] | ..."] [auth2ecdsap384ca="<CA Name> [certmapping:yes|no] [catype:root|intermediate (default=root)] | ..."] Best Regards, AidenAiden Cao TechNet Community Support