Software⏱️ 4 min read📅 2026-06-19

How to Fix: Network Error: No connection could be made because the target machine actively refused it

Chef network error: No connection could be made because the target machine actively refused it, despite port being opened and firewall turned off.

Quick Answer: Check if WinRM is enabled on the remote server and ensure that the correct certificate is being used.

📋 Table of Contents

  1. ⚠️ Common Causes
  2. ✅ Best Solutions to Fix It
  3. ✨ Wrapping Up

The 'Network Error: No connection could be made because the target machine actively refused it' error occurs when a client attempts to establish a connection with a server that is not listening on the specified port. In this case, you're trying to bootstrap a server via Chef using WinRM (Windows Remote Management), but are encountering this error despite opening port 5985 on the remote server.

This issue can be frustrating, especially when troubleshooting and testing are involved. However, by following these steps, you should be able to resolve the problem and successfully connect to your target machine.

⚠️ Common Causes

  • The primary reason for this error is that the WinRM service might not be running or configured correctly on the remote server. Even if the port is opened in the firewall, the service needs to be up and listening on that port for connections to be established.
  • Another possible cause could be Windows Defender Firewall or other host-based firewalls blocking the incoming connection. Additionally, network policies or group policy settings might also prevent the connection from being made.

✅ Best Solutions to Fix It

Configuring WinRM Service

  1. Step 1: Step 1: Ensure that the WinRM service is installed and enabled on the remote server. You can do this by running the command 'winrm quickconfig' in an elevated Command Prompt or PowerShell.
  2. Step 2: Step 2: Verify that the WinRM listener is set to listen on all network interfaces. Run the command 'winrm get winrm/proxy': to check if the listener is configured correctly.
  3. Step 3: Step 3: Check the Windows Defender Firewall settings to ensure that it's not blocking incoming connections on port 5985. You can do this by running the command 'netsh advfirewall show rule dir=in action=allow protocol=tcp localport=5985'. If the rule exists, delete it and then restart the WinRM service.

Configuring Firewall Rules

  1. Step 1: Step 1: Add a new inbound rule to allow incoming connections on port 5985. Open the Windows Defender Firewall with Advanced Security console, go to Inbound Rules, and then click 'New Rule'. Select 'Rule Type' as 'Port', choose 'TCP', and enter port 5985 in the specific local ports box.
  2. Step 2: Step 2: Ensure that the rule is set to allow the connection. Check the 'Profile' dropdown menu and select 'Domain', 'Private', or 'Public' depending on your requirements.

✨ Wrapping Up

By following these steps, you should be able to resolve the 'Network Error: No connection could be made because the target machine actively refused it' issue and successfully connect to your remote server via WinRM. Remember to verify that the WinRM service is running and configured correctly, and ensure that any firewall rules are in place to allow incoming connections on port 5985.

Did this fix your problem?

If not, try searching for specific error codes.

🔍 Search Error Database

❓ Frequently Asked Questions

🛠️ Related Fixes

How to Fix: Pc crashes shortly after launching game (rainbow

Fix Pc crashes shortly after launching game (rainbow six siege). Compl

How to Fix: Installing an APK on a locked down phone

Installing an APK on a locked down phone: Try using a rooted device, e

How to Fix: New PC build- no signal and no clue

Fix New PC build- no signal and no clue. Complete troubleshooting guid