Privileged Access Workstation (PAW) Content

These scripts and files are used in the Privileged Access Workstation (PAW) instructions published at

5 Star
2,404 times
Add to favorites
E-mail Twitter Digg Facebook
Sign in to ask a question

  • pawfirewall.wfw
    1 Posts | Last post January 10, 2018
    • Would just like to add myself to the list of people waiting for the pawfirewall.wfw to be re-released.  Even with errors, it'd be nice to have as a starting point.
  • Ready to get started
    1 Posts | Last post December 11, 2017
    • I am also waiting on the pawfirewall.wfw file to be resubmitted. We would like to get the ball running ASAP. 
  • patiently awaiting
    1 Posts | Last post November 20, 2017
    • I would like to add myself to the list of admins who are excited to see the re-release of the firewall rules.  Thanks John!
  • pawfirewall.wfw
    2 Posts | Last post October 24, 2017
    • Any updates on the pawfirewall.wfw?
    • A thousand apologies everyone - I won't bore everyone with the details, but will say that we (the contributors, including myself) were all redirected to other tasks over the last six-plus months.  [Two words: ransomware recoveries.]  We're revisiting this right now and I really hope to be able to post a new version very soon!  THANK YOU EVERYONE for your patience.
  • Come on
    2 Posts | Last post August 26, 2017
    • Please post the files, even though theres minor errors....
    • Do you have the old copy you could provide to me, I'll fix the minor errors and repost?
  • pawfirewall.wfw
    2 Posts | Last post August 21, 2017
    • Does anyone have a copy of the old pawfirewall.wfw they can provide to me, I have my own version that I've been using for a few years that I can compare it against. I'm also considering creating a PowerShell script that can be used to update 'outbound to DCs' rules with IP addresses that are provided to the script (and other remote IP scoped rules too).
    • My firewall rules block inbound and outbound without applying local rules, will the new pawfirewall.wfw do the same? I also use advanced audit 'Audit Filtering Platform Connection' success and failure, which creates event IDs 5156 and 5157 in the security log, to help create rules. Using this along with the 'NetworkProfile' event log, to see when the transition from public to domain authenticated occurs, gives you all you need to know to create a very hardened firewall.
  • updated pawfirewall.wfw?
    1 Posts | Last post August 13, 2017
    • It would be nice to have the pawfirewall.wfw file, the old version is ok...
  • pawfirewall.wfw
    1 Posts | Last post August 03, 2017
    • How can i get a pawfirewall.wfw configration file?
  • PAW firewall
    1 Posts | Last post July 11, 2017
    • Hi, Any ETA on PAW firewall .wfw file or general recommendation on what to configure.
  • pawfirewall.wfw status
    1 Posts | Last post July 10, 2017
    • Is there any update on the issue with the pawfirewall.wfw configuration?
1 - 10 of 15 Items