configure the winrm client without starting the winrm server
When trying to user psremoting you have to add a trusted host to your client's trusted hosts. This is fine and we normally default to '*' for developer machines that need to talk to prod and other infra. The problem is that this also requires the developer machine to start the winrm service which 'allows the computer to recieve Windows Powershell remote commands that are sent using the WS-Management technology'. I get pushback from devs who don't want to run this server service and see it as an unecessary security risk. We typically don't need CredSSP or have issues with the double-hop problem, so it doesn't make sense that when configuring the client to require that the server is started. I'd expect that a security review would also flag this as an issue for concern.
Nathan Vonnahme commented
Remoting should work by default. Imagine if you couldn't run `mstsc` or access network shares out of the box without whacking a bunch of spookily named security settings.
Ritch Melton commented
I originally opened an issue with the powershell team on github. https://github.com/PowerShell/PowerShell/issues/3468
They politely asked I redirect the issue here.