Support for a Workgroup Environment

You can configure and use most Intel AMT settings on systems in a peer-to-peer network (a Workgroup). This table shows settings that require services that are not usually available in a Workgroup.

# To define this setting... You must have...
1 Active Directory Integration

Access to an Active Directory (AD)

Note:

  • You must configure setting #1 if you want to configure settings #2, #3, or #4
  • Settings #3 and #4 also need access to a CA
2 Kerberos Users
3 802.1x Setups
4 Endpoint Access Control (EAC)
5 Transport Layer Security (TLS)

Access to a Certification Authority (CA)

Note: If you define Remote Access to use password-based authentication, access to a CA is not necessary.

6 Remote Access
In a Workgroup without access to a Domain you cannot configure settings #1 - #4 on Intel AMT systems. You can configure settings #5 and #6, but only on systems with Intel AMT 6.2 and higher.

Users in a Workgroup do not have the necessary permissions to connect to the AD or the CA. This means that the Intel SCS component, which is running on a computer in the Workgroup, cannot access the AD/CA.

Thus, to configure these settings in a Workgroup, you must use one of these methods: