Client business

Intel AMT 9: Accessing one PC over Internet Securely

Dear all,

I hope, I am asking in the correct place: My question is regarding Intel AMT v9 technology. I have only one PC which is app 300 KM far from me. To have as good control over it as possible, I have decided to control it using Intel AMT. My configuration uses Intel AMT 9.

I can access the PC without problems through Intel AMT KVM through un-encrypted connection. However, I want to be able to access the PC securely. Here are my questions:

How to change the initial AMT password from Windows




Our goal is to change the initial admin password for the computers from Windows via software deployment / operating system deployment.

I have tried to use this method:

Created a profile with the ACUWizard and used the following syntax to configure the VPro

ACUConfig.exe /Output File C:\windows\debug\intelamtinstalllog.txt ConfigAMT AMTSet1.xml /DecryptionPassword "decryption_password" /AbortOnFailure /AdminPassword "admin"

but I get these errors

Upgrade Intel IPT with PKI, then CryptImportKey does not work

I recently upgrade IPT with PKI  from v3.1.0.182 to v4.0.5.25, then I can not use CryptImportKey  any more.

Because it returns 0x000000b7(maybe ERROR_ALREADY_EXISTS) after PIN setting PTD displayed.

Only container created.

I set dwFlags as CRYPT_USER_PROTECTED to use PKI with PTD.

I did not change any source codes, but only changed provider from Intel IPT Enhanced Cryptographic Provider to Intel IPT CSP - Non-Exportable Keys

What is wrong with it? or any misuse?

Summary of the Intel Developer Forum 2015

I was last week in San Francisco attending to the IDF and I must confess that I’m still thinking about all the cool things that I saw. I though in sharing the technical sessions which I enjoyed the most (in no particular order) with you so you can taste what is like an IDF. I would like to thank you to all my Black Belt fellows and everyone at Intel who makes this happen, hats off and all my sincere gratitude to Kathy, Russ, Vishwas, Scott, Morris and Christos.

Meshcentral - Now with integrated Manageabiltiy Commander Web Edition

The new Manageability Commander code base offers many benefits. For example, the hardware KVM feature in Meshcentral used to not support compression, and so, was very slow. The new viewer supports full ZRLE8 and ZRLE16 tile compression allowing for much better KVM performance over the Internet. All of the WSMAN/KVM/SOL smarts is built in JavaScript and runs in the browser, greatly simplifying the server that focuses on connection relay. Administrators can now manage Intel AMT user accounts, event log and more… as Manageability Commander evolves, new versions of the code will be integrated into Meshcentral, so the console will get better over time.

vPro - Cannot Provision Workstation

I am having issues provisioning a workstation with Windows 7 Pro x64 with vPro v9 via LabTech.  I have tried uninstalling and re-installing MEI as well as installing the needed driver updates to the computer but none of these made any difference.  I have attached the screen shot of the full error to this topic.  Any help would be greatly appreciated.  Thanks in advance.

Meshcentral - Sprinxle Cloud

Sprinxle is a company based in California that offers Intel AMT management solution and services. Recently, they added Sprinxle Cloud to their product line up. Sprinxle Cloud is a commercially supported version of Meshcentral. Late last year, they started taking the open source software and making the proper changes to it so they could offer it as a supported product. They offer e-mail and phone support along with many other services.

How to completely deactivate Intel AMT

Dear all,

I am using a Lenovo ThinkPad T420 and Windows 7 prof. x64 as my main workstation. Yesterday I did a reinstallation of Windows 7 (ISO image from MSDNAA and not the Lenovo DVD). After the OS and all drivers (using Lenovo System Update) were installed, I had a look at the device manager and recognized the "Intel management engine interface". Since I don't need this function I researched how this device can be disabled. First I had a look in the System BIOS which stated that AMT is disabled:

Iscriversi a Client business