Chapter 14 Managing Devices for FortiOS 5.0 : Vulnerability Scan : Requirements for authenticated scanning and ports scanned : Microsoft Windows hosts - domain scanning : Group Policy - Administrative Templates
  
Group Policy - Administrative Templates
In the Group Policy Management Editor, go to Computer Configuration > Administrative Templates > Network > Network Connections > Windows Firewall > Domain Profile.
Setting
Value
Windows Firewall: Protect all network connections
Disabled
or
 
Setting
Value
Windows Firewall: Protect all network connections
Enabled
Windows Firewall: Allow remote administration exception
Enabled
 
Allow unsolicited messages from1
*
Windows Firewall: Allow file and printer sharing exception
Enabled
 
Allow unsolicited messages from1
*
Windows Firewall: Allow ICMP exceptions
Enabled
 
Allow unsolicited messages from1
*
1Windows prompts you for a range of IP addresses. Enter either “*” or the IP address of the Fortinet appliance that is performing the vulnerability scan.