To allow issuing of remote commands to servers that are not in the domain, run the following commands on each server:
#Enable Remote Desktop
Set-ItemProperty -Path "HKLM:\System\CurrentControlSet\Control\Terminal Server" -Name "fDenyTSConnections" -Value 0
Enable-NetFirewallRule -DisplayGroup "Remote Desktop"
#Assign IPadress
New-NetIPAddress -InterfaceAlias "Integrated NIC 1 Port 1-1" -IPAddress 172.18.20.1 -DefaultGateway 172.18.0.1 -PrefixLength 19 -AddressFamily IPv4 -Verbose
#Disable DHCP on the management adapters
Set-NetIPInterface -InterfaceAlias "Integrated NIC 1 Port 1-1",”Integrated NIC 1 Port 2-1” -Dhcp Disabled
#Configure DNS Client
Set-DnsClientServerAddress -InterfaceAlias "Integrated NIC 1 Port 1-1" -ServerAddresses <DNS IP>
Get-DnsClientServerAddress -InterfaceAlias "Integrated NIC 1 Port 1-1"
#Exclude iRDAC USB NIC from cluster validation
New-Item -Path HKLM:\system\currentcontrolset\services\clussvc
New-Item -Path HKLM:\system\currentcontrolset\services\clussvc\parameters
New-ItemProperty -Path HKLM:\system\currentcontrolset\services\clussvc\parameters -Name ExcludeAdaptersByDescription -Value "Remote NDIS Compatible Device"
#Configure time source using DNS IP address
w32tm /config /manualpeerlist:"<DNS IP>" /syncfromflags:manual /update
#Check time source
w32tm /query /status
#Configure WinRM
winrm quickconfig
#Enable ICMP firewall rule
netsh advfirewall firewall add rule name="ICMP Allow incoming V4 echo request" protocol=icmpv4:8,any dir=in action=allow
#Disable disconnected network interface controllers
Get-NetAdapter | Where-Object {$_.status -eq "disconnected"} | Disable-NetAdapter