How can Jenkins on Linux do builds to Windows servers securely without A.D.?How do you add a Windows environment variable without rebooting?Jenkins (Windows Service) with Git over SSHSVN from linux to windowspublish over ssh jenkinsManaging Linux server from PowerShell using built-in credentialsWindows Remote Management Over Untrusted DomainsHow do I get Jenkins running on Linux to communicate with Windows servers?Is there a way to change the java JRE a linux Jenkins server uses?Access a linux server without being on the sudoers fileWindows Admin Center Doesn't Connect
Why do some games show lights shine through walls?
Why cruise at 7000' in an A319?
Are Finite Automata Turing Complete?
Content builder HTTPS
Find smallest index that is identical to the value in an array
A player is constantly pestering me about rules, what do I do as a DM?
Should I tell my insurance company I'm making payments on my new car?
Counting occurrence of words in table is slow
Declining an offer to present a poster instead of a paper
STM Microcontroller burns every time
Intuitively, why does putting capacitors in series decrease the equivalent capacitance?
How to get cool night-vision without lame drawbacks?
MH370 blackbox - is it still possible to retrieve data from it?
Alphabet completion rate
Is there a maximum distance from a planet that a moon can orbit?
Are there any vegetarian astronauts?
How often can a PC check with passive perception during a combat turn?
Swapping rooks in a 4x4 board
Singing along to guitar chords (harmony)
How many codes are possible?
How to perform Login Authentication at the client-side?
Why does the numerical solution of an ODE move away from an unstable equilibrium?
Should my manager be aware of private LinkedIn approaches I receive? How to politely have this happen?
Does image quality of the lens affect "focus and recompose" technique?
How can Jenkins on Linux do builds to Windows servers securely without A.D.?
How do you add a Windows environment variable without rebooting?Jenkins (Windows Service) with Git over SSHSVN from linux to windowspublish over ssh jenkinsManaging Linux server from PowerShell using built-in credentialsWindows Remote Management Over Untrusted DomainsHow do I get Jenkins running on Linux to communicate with Windows servers?Is there a way to change the java JRE a linux Jenkins server uses?Access a linux server without being on the sudoers fileWindows Admin Center Doesn't Connect
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty margin-bottom:0;
I am running Jenkins 1.6 on CentOS 7.2. I have several Windows 2012 servers without A.D. I connect to the Windows machines with local credentials. I have configured a development environment with Python and WinRM on the Linux server. For production my configuration will not work because WinRM is not encrypted.
How do I securely have Jenkins initiate builds on Windows machines without A.D.? I think my requirement of not having A.D. rules out Kerberos. (This link says that both the Linux and Windows servers must be part of the domain. I read elsewhere that it is inadvisable to join a Linux server to an A.D. domain.) I think the only solution would be to use encryption. But how do I do this?
On the Windows server that I set up with Jenkins, I tried to harden it to simulate production requirements: I used this command (from a command prompt opened as Administrator):
winrm set winrm/config/service @AllowUnencrypted="false"
But this made my Jenkins builds brake with an error like this:
winrm.exceptions.UnauthorizedError: 401 Unauthorized
My Jenkins builds use Python scripts with the authentication hard coded in them. I cannot have plaintext passwords in production.
If there is not a way to encrypt WinRM from the Linux/Jenkins server without A.D., what are my options for Jenkins pushing builds (running PowerShell commands) in a secure way in production?
Edit 8/16/16: I tried a different method without winrm. I set up SSH between the Linux server with Jenkins and the Windows servers.
How do I enter SSH credentials in Jenkins to do builds on other servers? The connection aspects should be about the same as a Linux server with Jenkins managing builds on other Linux servers as my Windows servers have OpenSSH. I do want to invoke a PowerShell script on the Windows server. Here is what I tried.
In the Jenkins UI, I go to the home page, then to Manage Credentials -> Configure System -> SSH Remote hosts. I click Add server and enter an IP address for the hostname. For the port I use 22. For the username I use gooduser. From the Linux back end of this Jenkins server, I can use gooduser to login via SSH to the Windows server that I entered in Jenkins. So I know the credentials work. I know port 22 is not blocked. But in the Jenkins web UI, I get "Can't connect to server" underneath the username field.
I tried not using a passphrase but pointing the keyfile to a location on the Linux server. I tried this with and without a password. I kept getting "Can't connect to server." Why I am getting this?
I tried adding additional servers beneath. I entered at least a hostname, a username, and a password. I click apply or save. I then click somewhere else in the web UI. But when I go back to SSH Hosts, all the subsequent server credentials are gone. Only the top, first SSH server's settings remain. Why do they go away? The button allows for new fields to appear. The button says "SSH sites that projects will want to connect." What does that mean?
linux windows powershell encryption winrm
asked Aug 9 '16 at 21:56
KiranKiran
322 silver badges10 bronze badges
add a comment |
I am running Jenkins 1.6 on CentOS 7.2. I have several Windows 2012 servers without A.D. I connect to the Windows machines with local credentials. I have configured a development environment with Python and WinRM on the Linux server. For production my configuration will not work because WinRM is not encrypted.
How do I securely have Jenkins initiate builds on Windows machines without A.D.? I think my requirement of not having A.D. rules out Kerberos. (This link says that both the Linux and Windows servers must be part of the domain. I read elsewhere that it is inadvisable to join a Linux server to an A.D. domain.) I think the only solution would be to use encryption. But how do I do this?
On the Windows server that I set up with Jenkins, I tried to harden it to simulate production requirements: I used this command (from a command prompt opened as Administrator):
winrm set winrm/config/service @AllowUnencrypted="false"
But this made my Jenkins builds brake with an error like this:
winrm.exceptions.UnauthorizedError: 401 Unauthorized
My Jenkins builds use Python scripts with the authentication hard coded in them. I cannot have plaintext passwords in production.
If there is not a way to encrypt WinRM from the Linux/Jenkins server without A.D., what are my options for Jenkins pushing builds (running PowerShell commands) in a secure way in production?
Edit 8/16/16: I tried a different method without winrm. I set up SSH between the Linux server with Jenkins and the Windows servers.
How do I enter SSH credentials in Jenkins to do builds on other servers? The connection aspects should be about the same as a Linux server with Jenkins managing builds on other Linux servers as my Windows servers have OpenSSH. I do want to invoke a PowerShell script on the Windows server. Here is what I tried.
In the Jenkins UI, I go to the home page, then to Manage Credentials -> Configure System -> SSH Remote hosts. I click Add server and enter an IP address for the hostname. For the port I use 22. For the username I use gooduser. From the Linux back end of this Jenkins server, I can use gooduser to login via SSH to the Windows server that I entered in Jenkins. So I know the credentials work. I know port 22 is not blocked. But in the Jenkins web UI, I get "Can't connect to server" underneath the username field.
I tried not using a passphrase but pointing the keyfile to a location on the Linux server. I tried this with and without a password. I kept getting "Can't connect to server." Why I am getting this?
I tried adding additional servers beneath. I entered at least a hostname, a username, and a password. I click apply or save. I then click somewhere else in the web UI. But when I go back to SSH Hosts, all the subsequent server credentials are gone. Only the top, first SSH server's settings remain. Why do they go away? The button allows for new fields to appear. The button says "SSH sites that projects will want to connect." What does that mean?
linux windows powershell encryption winrm
asked Aug 9 '16 at 21:56
KiranKiran
322 silver badges10 bronze badges
PyWinRM will perfectly handle encrypted connections. Make sure you have the correct credentials. 401 means that the credentials could not be verified.
– Michael Hampton♦
Aug 10 '16 at 0:28
I made sure the credentials worked. My Jenkins build worked until I changed the AllowUnencrypted setting on the Windows sever. So I know the credentials worked. Does PyWinRM have a way of encrypting connections without A.D.? I thought Kerberos needed A.D.
– Kiran
Aug 11 '16 at 0:01
It uses TLS like any secure web server. You didn't read the PyWinRM documentation?
– Michael Hampton♦
Aug 11 '16 at 0:42
I read PyWinRM documentation. I think this [article](ramblingcookiemonster.github.io/Cross-Platform-PowerShell-Remoting/) contradicts your statement about TLS. Which document are you referring to? I want PyWinRM to be encrypt the credentials when they are transmitted to the Windows server. But how do I do this?
– Kiran
Aug 12 '16 at 0:16
add a comment |
I am running Jenkins 1.6 on CentOS 7.2. I have several Windows 2012 servers without A.D. I connect to the Windows machines with local credentials. I have configured a development environment with Python and WinRM on the Linux server. For production my configuration will not work because WinRM is not encrypted.
How do I securely have Jenkins initiate builds on Windows machines without A.D.? I think my requirement of not having A.D. rules out Kerberos. (This link says that both the Linux and Windows servers must be part of the domain. I read elsewhere that it is inadvisable to join a Linux server to an A.D. domain.) I think the only solution would be to use encryption. But how do I do this?
On the Windows server that I set up with Jenkins, I tried to harden it to simulate production requirements: I used this command (from a command prompt opened as Administrator):
winrm set winrm/config/service @AllowUnencrypted="false"
But this made my Jenkins builds brake with an error like this:
winrm.exceptions.UnauthorizedError: 401 Unauthorized
My Jenkins builds use Python scripts with the authentication hard coded in them. I cannot have plaintext passwords in production.
If there is not a way to encrypt WinRM from the Linux/Jenkins server without A.D., what are my options for Jenkins pushing builds (running PowerShell commands) in a secure way in production?
Edit 8/16/16: I tried a different method without winrm. I set up SSH between the Linux server with Jenkins and the Windows servers.
How do I enter SSH credentials in Jenkins to do builds on other servers? The connection aspects should be about the same as a Linux server with Jenkins managing builds on other Linux servers as my Windows servers have OpenSSH. I do want to invoke a PowerShell script on the Windows server. Here is what I tried.
In the Jenkins UI, I go to the home page, then to Manage Credentials -> Configure System -> SSH Remote hosts. I click Add server and enter an IP address for the hostname. For the port I use 22. For the username I use gooduser. From the Linux back end of this Jenkins server, I can use gooduser to login via SSH to the Windows server that I entered in Jenkins. So I know the credentials work. I know port 22 is not blocked. But in the Jenkins web UI, I get "Can't connect to server" underneath the username field.
I tried not using a passphrase but pointing the keyfile to a location on the Linux server. I tried this with and without a password. I kept getting "Can't connect to server." Why I am getting this?
I tried adding additional servers beneath. I entered at least a hostname, a username, and a password. I click apply or save. I then click somewhere else in the web UI. But when I go back to SSH Hosts, all the subsequent server credentials are gone. Only the top, first SSH server's settings remain. Why do they go away? The button allows for new fields to appear. The button says "SSH sites that projects will want to connect." What does that mean?
linux windows powershell encryption winrm
asked Aug 9 '16 at 21:56
KiranKiran
322 silver badges10 bronze badges
I am running Jenkins 1.6 on CentOS 7.2. I have several Windows 2012 servers without A.D. I connect to the Windows machines with local credentials. I have configured a development environment with Python and WinRM on the Linux server. For production my configuration will not work because WinRM is not encrypted.
How do I securely have Jenkins initiate builds on Windows machines without A.D.? I think my requirement of not having A.D. rules out Kerberos. (This link says that both the Linux and Windows servers must be part of the domain. I read elsewhere that it is inadvisable to join a Linux server to an A.D. domain.) I think the only solution would be to use encryption. But how do I do this?
On the Windows server that I set up with Jenkins, I tried to harden it to simulate production requirements: I used this command (from a command prompt opened as Administrator):
winrm set winrm/config/service @AllowUnencrypted="false"
But this made my Jenkins builds brake with an error like this:
winrm.exceptions.UnauthorizedError: 401 Unauthorized
My Jenkins builds use Python scripts with the authentication hard coded in them. I cannot have plaintext passwords in production.
If there is not a way to encrypt WinRM from the Linux/Jenkins server without A.D., what are my options for Jenkins pushing builds (running PowerShell commands) in a secure way in production?
Edit 8/16/16: I tried a different method without winrm. I set up SSH between the Linux server with Jenkins and the Windows servers.
How do I enter SSH credentials in Jenkins to do builds on other servers? The connection aspects should be about the same as a Linux server with Jenkins managing builds on other Linux servers as my Windows servers have OpenSSH. I do want to invoke a PowerShell script on the Windows server. Here is what I tried.
In the Jenkins UI, I go to the home page, then to Manage Credentials -> Configure System -> SSH Remote hosts. I click Add server and enter an IP address for the hostname. For the port I use 22. For the username I use gooduser. From the Linux back end of this Jenkins server, I can use gooduser to login via SSH to the Windows server that I entered in Jenkins. So I know the credentials work. I know port 22 is not blocked. But in the Jenkins web UI, I get "Can't connect to server" underneath the username field.
I tried not using a passphrase but pointing the keyfile to a location on the Linux server. I tried this with and without a password. I kept getting "Can't connect to server." Why I am getting this?
I tried adding additional servers beneath. I entered at least a hostname, a username, and a password. I click apply or save. I then click somewhere else in the web UI. But when I go back to SSH Hosts, all the subsequent server credentials are gone. Only the top, first SSH server's settings remain. Why do they go away? The button allows for new fields to appear. The button says "SSH sites that projects will want to connect." What does that mean?
linux windows powershell encryption winrm
linux windows powershell encryption winrm
asked Aug 9 '16 at 21:56
KiranKiran
322 silver badges10 bronze badges
asked Aug 9 '16 at 21:56
KiranKiran
322 silver badges10 bronze badges
edited Aug 17 '16 at 0:48
Kiran
asked Aug 9 '16 at 21:56
KiranKiran
322 silver badges10 bronze badges
asked Aug 9 '16 at 21:56
KiranKiran
322 silver badges10 bronze badges
asked Aug 9 '16 at 21:56
KiranKiran
322 silver badges10 bronze badges
322 silver badges10 bronze badges
PyWinRM will perfectly handle encrypted connections. Make sure you have the correct credentials. 401 means that the credentials could not be verified.
– Michael Hampton♦
Aug 10 '16 at 0:28
I made sure the credentials worked. My Jenkins build worked until I changed the AllowUnencrypted setting on the Windows sever. So I know the credentials worked. Does PyWinRM have a way of encrypting connections without A.D.? I thought Kerberos needed A.D.
– Kiran
Aug 11 '16 at 0:01
It uses TLS like any secure web server. You didn't read the PyWinRM documentation?
– Michael Hampton♦
Aug 11 '16 at 0:42
I read PyWinRM documentation. I think this [article](ramblingcookiemonster.github.io/Cross-Platform-PowerShell-Remoting/) contradicts your statement about TLS. Which document are you referring to? I want PyWinRM to be encrypt the credentials when they are transmitted to the Windows server. But how do I do this?
– Kiran
Aug 12 '16 at 0:16
add a comment |
PyWinRM will perfectly handle encrypted connections. Make sure you have the correct credentials. 401 means that the credentials could not be verified.
– Michael Hampton♦
Aug 10 '16 at 0:28
I made sure the credentials worked. My Jenkins build worked until I changed the AllowUnencrypted setting on the Windows sever. So I know the credentials worked. Does PyWinRM have a way of encrypting connections without A.D.? I thought Kerberos needed A.D.
– Kiran
Aug 11 '16 at 0:01
It uses TLS like any secure web server. You didn't read the PyWinRM documentation?
– Michael Hampton♦
Aug 11 '16 at 0:42
I read PyWinRM documentation. I think this [article](ramblingcookiemonster.github.io/Cross-Platform-PowerShell-Remoting/) contradicts your statement about TLS. Which document are you referring to? I want PyWinRM to be encrypt the credentials when they are transmitted to the Windows server. But how do I do this?
– Kiran
Aug 12 '16 at 0:16
PyWinRM will perfectly handle encrypted connections. Make sure you have the correct credentials. 401 means that the credentials could not be verified.
– Michael Hampton♦
Aug 10 '16 at 0:28
PyWinRM will perfectly handle encrypted connections. Make sure you have the correct credentials. 401 means that the credentials could not be verified.
– Michael Hampton♦
Aug 10 '16 at 0:28
I made sure the credentials worked. My Jenkins build worked until I changed the AllowUnencrypted setting on the Windows sever. So I know the credentials worked. Does PyWinRM have a way of encrypting connections without A.D.? I thought Kerberos needed A.D.
– Kiran
Aug 11 '16 at 0:01
I made sure the credentials worked. My Jenkins build worked until I changed the AllowUnencrypted setting on the Windows sever. So I know the credentials worked. Does PyWinRM have a way of encrypting connections without A.D.? I thought Kerberos needed A.D.
– Kiran
Aug 11 '16 at 0:01
It uses TLS like any secure web server. You didn't read the PyWinRM documentation?
– Michael Hampton♦
Aug 11 '16 at 0:42
It uses TLS like any secure web server. You didn't read the PyWinRM documentation?
– Michael Hampton♦
Aug 11 '16 at 0:42
I read PyWinRM documentation. I think this [article](ramblingcookiemonster.github.io/Cross-Platform-PowerShell-Remoting/) contradicts your statement about TLS. Which document are you referring to? I want PyWinRM to be encrypt the credentials when they are transmitted to the Windows server. But how do I do this?
– Kiran
Aug 12 '16 at 0:16
I read PyWinRM documentation. I think this [article](ramblingcookiemonster.github.io/Cross-Platform-PowerShell-Remoting/) contradicts your statement about TLS. Which document are you referring to? I want PyWinRM to be encrypt the credentials when they are transmitted to the Windows server. But how do I do this?
– Kiran
Aug 12 '16 at 0:16
add a comment |
1 Answer
1
active
oldest
votes
You can configure each Windows server to be a Jenkins node (aka "slave" or "agent"). Then use a pipeline job to control the flow of which commands runs on which node (using node blocks).
This will eliminate the need for WinRM, SSH or other remote execution methods.
Securing the Jenkins node-to-master communications can be done using a per-node secret, managed by Jenkins. I do this with ~20 different machines, most Windows-based, some Linux-based, including complex build jobs that require parts that build under Windows and other parts that build under Linux.
Example pipeline code:
node("LinuxBuild")
sh """
ls -l
echo "Running under Linux!"
"""
node("WinBuild")
bat """
dir
echo Running under Windows!
"""
In the above code, LinuxBuild and WinBuild are labels given to one or more Linux or Windows nodes, accordingly.
answered Sep 12 '17 at 13:23
Oren ChapoOren Chapo
1215 bronze badges
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f795884%2fhow-can-jenkins-on-linux-do-builds-to-windows-servers-securely-without-a-d%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
You can configure each Windows server to be a Jenkins node (aka "slave" or "agent"). Then use a pipeline job to control the flow of which commands runs on which node (using node blocks).
This will eliminate the need for WinRM, SSH or other remote execution methods.
Securing the Jenkins node-to-master communications can be done using a per-node secret, managed by Jenkins. I do this with ~20 different machines, most Windows-based, some Linux-based, including complex build jobs that require parts that build under Windows and other parts that build under Linux.
Example pipeline code:
node("LinuxBuild")
sh """
ls -l
echo "Running under Linux!"
"""
node("WinBuild")
bat """
dir
echo Running under Windows!
"""
In the above code, LinuxBuild and WinBuild are labels given to one or more Linux or Windows nodes, accordingly.
answered Sep 12 '17 at 13:23
Oren ChapoOren Chapo
1215 bronze badges
add a comment |
You can configure each Windows server to be a Jenkins node (aka "slave" or "agent"). Then use a pipeline job to control the flow of which commands runs on which node (using node blocks).
This will eliminate the need for WinRM, SSH or other remote execution methods.
Securing the Jenkins node-to-master communications can be done using a per-node secret, managed by Jenkins. I do this with ~20 different machines, most Windows-based, some Linux-based, including complex build jobs that require parts that build under Windows and other parts that build under Linux.
Example pipeline code:
node("LinuxBuild")
sh """
ls -l
echo "Running under Linux!"
"""
node("WinBuild")
bat """
dir
echo Running under Windows!
"""
In the above code, LinuxBuild and WinBuild are labels given to one or more Linux or Windows nodes, accordingly.
answered Sep 12 '17 at 13:23
Oren ChapoOren Chapo
1215 bronze badges
add a comment |
You can configure each Windows server to be a Jenkins node (aka "slave" or "agent"). Then use a pipeline job to control the flow of which commands runs on which node (using node blocks).
This will eliminate the need for WinRM, SSH or other remote execution methods.
Securing the Jenkins node-to-master communications can be done using a per-node secret, managed by Jenkins. I do this with ~20 different machines, most Windows-based, some Linux-based, including complex build jobs that require parts that build under Windows and other parts that build under Linux.
Example pipeline code:
node("LinuxBuild")
sh """
ls -l
echo "Running under Linux!"
"""
node("WinBuild")
bat """
dir
echo Running under Windows!
"""
In the above code, LinuxBuild and WinBuild are labels given to one or more Linux or Windows nodes, accordingly.
answered Sep 12 '17 at 13:23
Oren ChapoOren Chapo
1215 bronze badges
You can configure each Windows server to be a Jenkins node (aka "slave" or "agent"). Then use a pipeline job to control the flow of which commands runs on which node (using node blocks).
This will eliminate the need for WinRM, SSH or other remote execution methods.
Securing the Jenkins node-to-master communications can be done using a per-node secret, managed by Jenkins. I do this with ~20 different machines, most Windows-based, some Linux-based, including complex build jobs that require parts that build under Windows and other parts that build under Linux.
Example pipeline code:
node("LinuxBuild")
sh """
ls -l
echo "Running under Linux!"
"""
node("WinBuild")
bat """
dir
echo Running under Windows!
"""
In the above code, LinuxBuild and WinBuild are labels given to one or more Linux or Windows nodes, accordingly.
answered Sep 12 '17 at 13:23
Oren ChapoOren Chapo
1215 bronze badges
edited Sep 12 '17 at 13:30
answered Sep 12 '17 at 13:23
Oren ChapoOren Chapo
1215 bronze badges
answered Sep 12 '17 at 13:23
Oren ChapoOren Chapo
1215 bronze badges
answered Sep 12 '17 at 13:23
Oren ChapoOren Chapo
1215 bronze badges
1215 bronze badges
add a comment |
add a comment |
Thanks for contributing an answer to Server Fault!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f795884%2fhow-can-jenkins-on-linux-do-builds-to-windows-servers-securely-without-a-d%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
PyWinRM will perfectly handle encrypted connections. Make sure you have the correct credentials. 401 means that the credentials could not be verified.
– Michael Hampton♦
Aug 10 '16 at 0:28
I made sure the credentials worked. My Jenkins build worked until I changed the AllowUnencrypted setting on the Windows sever. So I know the credentials worked. Does PyWinRM have a way of encrypting connections without A.D.? I thought Kerberos needed A.D.
– Kiran
Aug 11 '16 at 0:01
It uses TLS like any secure web server. You didn't read the PyWinRM documentation?
– Michael Hampton♦
Aug 11 '16 at 0:42
I read PyWinRM documentation. I think this [article](ramblingcookiemonster.github.io/Cross-Platform-PowerShell-Remoting/) contradicts your statement about TLS. Which document are you referring to? I want PyWinRM to be encrypt the credentials when they are transmitted to the Windows server. But how do I do this?
– Kiran
Aug 12 '16 at 0:16