none
WinRM and NTLM RRS feed

  • Question

  • Hello,

    I'm trying to use NTLM authentication with WinRM.


    Documentation says that NTLM is possible as part of Negotiate protocol

    • Negotiate. Negotiate is a challenge-response scheme that negotiates with the server or proxy to determine the scheme to use for authentication. For example, this parameter value allows for negotiation to determine whether the Kerberos protocol or NTLM is used.

    https://docs.microsoft.com/en-us/powershell/module/Microsoft.WsMan.Management/Get-WSManInstance?view=powershell-5.1

    But when I try to use NTLM authentification - it always use Kerberos instead

    $session = New-WSManSessionOption -NoEncryption;
    Get-WSManInstance  wmi/root/cimv2/* -Enumerate -Filter "SELECT UUID from Win32_ComputerSystemProduct" -ComputerName host.acme.com -Authentication Negotiate -Credential acme.com\user.name -SessionOption $session
    I used network protocol analyzer to intercept all packets sent during execution of this cmd-let. And I found that it still uses Kerberos.



    Thursday, August 10, 2017 6:15 PM

Answers

  • Hi,
    This forum handles requests related to Open Specifications documentation issues. The Open Specifications can be found at: http://msdn2.microsoft.com/en-us/library/cc203350.aspx.
    Your question does not appear to be related to the Open Specifications documentation set.
    I suggest you try the following forum to get assistance: 
    https://social.technet.microsoft.com/Forums/windowsserver/en-US/home?forum=winserverManagement
    Thanks,
    Edgar
    Thursday, August 10, 2017 6:46 PM
    Moderator