Is it possible to know the provisioning model or state of an AMT machine remotely? That is, to query from the server side on the state of the client AMT machine.
I tried doing local query by using the sample C# code in Intel SDK on GeneralInfo, but they require a password to get the provisioning state of the machine. Im working with mass client AMT machines which have different passwords, so I am looking at ways to get the provisioning state without entering the password.
I have also tried using WMI scripting to do local query. But I am working with AMT version that are older than 6.0. Is there a way to register Intel AMT WMI provider in AMT version 4.0 to 5.0?
On a side note, I find that some machines open both ports 16992 and 16993. Is this possible? I mean if it's TLS-enabled, shouldn't it only listen at port 16993, and vice versa.
Do you see AMTSetupStatus as an item in the registry after running iAMTScan? If you don't, that's a sign the system isn't provisioned. I did notice that although you got a heciversion and unsversion, you did not see an LMSversion entry, which likely is a problem (the LMS is part of the local software package). What was the model listed?
If the system isn't provisioned, it's in neither SMB provisioned or enterprise provisioned state. At that point the best bet is to either configure it locally in SMB, or use the Activator tool to set it up to start attempting an enterprise configuration.
Yes, prior to AMT 6.0, if you enable TLS, it disables port 16992 (the non-TLS port) for traffic. With AMT 6.0 forward, you can configure AMT to still answer on 16992 after enabling TLS, if you choose.