I've got a lab system with a locked down Windows Server 2019 OS installed, specifically the Secure Host Baseline image. I've got all the necessary drivers and programs loaded for Intel AMT (the Management Engine Components, and the Security Status application)

I've also got the IntelVPro cmdlets loaded, as well as the assemblies from the needed dlls.

When I run commands that query the status of the AMT configuration, I get an unauthorized error.

Like in the Get-AMTSetup command, it fails at when discover() is invoked:

Add-Type -Path "C:\PowershellModules\IntelvProModule\Bin\IntelvPro\Intel.Wsman.Scripting.dll"

$me = new-Object 'Intel.Management.Mei.MeDevice'
$result = new-Object 'System.Object'

$MeEnabled=$me.Enable()

$me.Discover()

Exception calling "Discover" with "0" argument(s): "Unauthorized"
At C:\Users\xAdministrator\Desktop\AMTtesting.ps1:9 char:1
+ $me.Discover()
+ ~~~~~~~~~~~~~~
+ CategoryInfo : NotSpecified: (:) [], MethodInvocationException
+ FullyQualifiedErrorId : WsmanUnauthorizedException

Other "Get" commands produce similar Unauthorized messages.

I've been able to run the exact same commands on fresh installations of Windows Server 2019 on the same hardware and do not get these errors.

I've also copied over the Local Security Policies and Local Group Policies from the fresh installation to the Locked Down Image, and still receive the same error messages.

Does anyone have any ideas or guidance where to look next? I believe it's either got to be permissions somewhere, or some dependency that's locked down that I'm not able to find.