Hallo ! We have a Windows Server 2008 R2 domain infrastructure and recently I got Windows ThinPC to try if it will work in our environment. It all works fine on one of our old machines, but I have a problem with managing it with Microsoft SCCM. The problem is when I join the Workstation in our Domain in Windows Firewall with Advanced Security appears a Rule, that blocks Remote Administration (RPC) for Domain profile with RuleSource- Local Group Policy Setting. I checked in gpedit.msc on the local machine and did't see anything there. I tryed disabling Rule Merging with Group Policy - still the rule appers there. When I remove the Workstation from the Domain the rule dissapears and when I join it again it comes back. The PC I work on is Windows 7 Professional and this rule is there too, but it is set to allow the traffic. So does anyone know how to edit these default profile rules that apply, or this is some kind of Windows ThinPC Restriction ? I really need this service in order to get the SCCM client working on this PC (Remote connect to WMI gives "RPC Server unavailable" and I am pretty sure this rule causes it). Best regards, Jordan

Can you ping the RPC server? RPC uses TCP port 135 to function. Try to manually add an Outbound rule (Allow) for Port 135 on the ThinPC and see if it works. Also post a screenshot of where it shows the RuleSource. You can also post this question in parallel to the SCCM forums to ensure you get an answer as soon as possible - http://social.technet.microsoft.com/forums/en-US/category/configurationmanager/ Please revert back here if this does not resolve your issue. Hope it helps! Kunal D Mehta - a Windows Server Enthusiast | My first TechNet Wiki Article

Hallo! I can ping the RPC Server and i have file and printer sharing access too + RDC connection. Here is the image for the RuleSource. The Rule Source Column shows what created the rule, you will see 4 rules for the Remote assistance (RPC). Two of them were created by me - the marked one is created from local gpedit.msc, the other is from Domain GPO, and the other two are the problem - block RPC on domain rofile and allow the RPC for Public and Private profile with Rule Source "Local Group Policy Setting". So far I couldn't get rid of it except when I remove the computer from the Domain. Something creates this rule and I don't know what. When I open local gpedit.msc i don't see a rule created for blocking the RPC. I added manually Outbound Rule (Allow) for port 135 - and still no luck. The block rule is the one that works no matter how many allow rules I have for the same port.Best regards, Jordan