从Windows Server 2008 R2/2012开始，精美的远程管理功能在添加到集中式Server Manager控制台时可能会返回以下错误：

Computer <NAME> cannot be managed. Verify that the network path is correct, the computer is available on the network and that the appropriate Windows Firewall rules are enabled on the target computer.

对于Windows Server 2008，请首先确保已安装WinRM功能。

然后，确保您在Windows防火墙(firewall.cpl)中启用/允许了以下传入规则：

COM+ Network Access (DCOM-In)
COM+ Remote Administration (DCOM-In)
File and Printer Sharing (Spooler Service  RPC)
File and Printer Sharing (Spooler Service  RPC-EPMAP)
Remote Event Log Management (NP-In)
Remote Event Log Management (RPC)
Remote Event Log Management (RPC-EPMAP)
Remote Event Monitor (RPC)
Remote Event Monitor (RPC-EPMAP)
Remote Scheduled Task Management (RPC)
Remote Scheduled Task Management (RPC-EPMAP)
Remote Service Management (NP-In)
Remote Service Management (RPC)
Remote Service Management (RPC-EPMAP)
Remote Rule for Remote Shutdown (RPC-EP-In)
Remote Rule for Remote Shutdown (TCP-In)
Remote Volume Management  Virtual Disk Service (RPC)
Remote Volume Management  Virtual Disk Service Loader (RPC)
Remote Volume Management (RPC-EPMAP)

即使您的Active Directory环境位于NAT /防火墙之后(我希望您这样做！)，我还是建议您将对这些服务的访问限制在管理/本地子网或者管理控制台服务器IP。

对于每个规则，请执行以下操作：

Properties > Scope > Remote IP Address > These IP addresses

然后添加您的子网或者管理服务器IP地址。