ITScripts Options

The ITScripts Options dialog enables you to specify how the console will connect with target machines when running scripts using WinRM (PowerShell remoting).



If you want the console to contact the target machines using an SSL connection, enable this check box.

Note: In addition, each target machine must contain a signed certificate and a WinRM HTTPS Listener. For more details see ITScripts Requirements.


Specifies the port used by the console when contacting the target machines. The default value is as follows:

  • If you are NOT using SSL the default value is 5985

  • If you ARE using SSL the default value is 5986

Local Administrator credential to modify local TrustedHosts

Note: Only shared credentials are contained in this list. If the credential you are looking for is not listed it probably means it is not defined as a shared credential. See Defining Credentials for information on how to share a credential.

Select the credential (the user name and password pair) to use if it is necessary for Shavlik Protect to temporarily add a target machine to the console's TrustedHosts list when executing a WinRM script.

Here's why this might be needed. The WinRM services establish trust with one another in one of three ways: (1) Kerberos (on domains), (2) trusted certificates (SSL / HTTPS transport), or (3) the target machine appears in the console's TrustedHosts list. If you are not using Kerberos or HTTPS and want to execute scripts that require remoting, you must supply a credential with administrative privilege in order for Shavlik Protect to be able to temporarily access and modify the console's TrustedHosts list.

This is generally necessary only if the console is part of a workgroup rather than a domain. In this case, it is also necessary that the TrustedHosts list on the console contains the name of the computer that the console is running on. You can make this one-time change by entering the following command at a PowerShell prompt when logged in as an administrator:

Set-Item WSMan:\localhost\client\TrustedHosts <console_name>

You can verify the value of TrustedHosts by entering the following command:

Get-Item WSMan:\localhost\client\TrustedHosts