Powershell remoting with ip-address as target

by

The error message is giving you most of what you need. This isn’t just about the TrustedHosts list; it’s saying that in order to use an IP address with the default authentication scheme, you have to ALSO be using HTTPS (which isn’t configured by default) and provide explicit credentials. I can tell you’re at least not using SSL, because you didn’t use the -UseSSL switch.

Note that SSL/HTTPS is not configured by default – that’s an extra step you’ll have to take. You can’t just add -UseSSL.

The default authentication mechanism is Kerberos, and it wants to see real host names as they appear in AD. Not IP addresses, not DNS CNAME nicknames. Some folks will enable Basic authentication, which is less picky – but you should also set up HTTPS since you’d otherwise pass credentials in cleartext. Enable-PSRemoting only sets up HTTP.

Adding names to your hosts file won’t work. This isn’t an issue of name resolution; it’s about how the mutual authentication between computers is carried out.

Additionally, if the two computers involved in this connection aren’t in the same AD domain, the default authentication mechanism won’t work. Read “help about_remote_troubleshooting” for information on configuring non-domain and cross-domain authentication.

From the docs at http://technet.microsoft.com/en-us/library/dd347642.aspx

HOW TO USE AN IP ADDRESS IN A REMOTE COMMAND
-----------------------------------------------------
    ERROR:  The WinRM client cannot process the request. If the
    authentication scheme is different from Kerberos, or if the client
    computer is not joined to a domain, then HTTPS transport must be used
    or the destination machine must be added to the TrustedHosts
    configuration setting.

The ComputerName parameters of the New-PSSession, Enter-PSSession and
Invoke-Command cmdlets accept an IP address as a valid value. However,
because Kerberos authentication does not support IP addresses, NTLM
authentication is used by default whenever you specify an IP address. 

When using NTLM authentication, the following procedure is required
for remoting.

1. Configure the computer for HTTPS transport or add the IP addresses
   of the remote computers to the TrustedHosts list on the local
   computer.

   For instructions, see "How to Add a Computer to the TrustedHosts
   List" below.


2. Use the Credential parameter in all remote commands.

   This is required even when you are submitting the credentials
   of the current user.

More Related Contents:

  1. How do I pass a local variable to a remote `Invoke-Command`? [duplicate]
  2. Using PowerShell credentials without being prompted for a password
  3. Unable to access UNC Paths in Powershell remote session
  4. How do I include a locally defined function when using PowerShell’s Invoke-Command for remoting?
  5. Get-Aduser -Filter will not accept a variable
  6. Powershell executable isn’t outputting to STDOUT
  7. How to escape special characters in PowerShell?
  8. Function return value in PowerShell
  9. Read file line by line in PowerShell
  10. how do I loop through a line from a csv file in powershell
  11. Access PSObject property indirectly with variable
  12. Is there a way to set a variable up to place output to stdout or null?
  13. Custom RoboCopy Progress Bar in PowerShell
  14. Executing an EXE file using a PowerShell script
  15. INI file parsing in PowerShell
  16. Export-CSV exports length but not name
  17. How to properly -filter multiple strings in a PowerShell copy script
  18. Write-Host vs Write-Information in PowerShell 5
  19. Why does “Get-ChildItem -File | Get-FileHash” work?
  20. Powershell Using Start-Process in PSSession to Open Notepad
  21. Powershell Get-ChildItem most recent file in directory
  22. Powershell – Reboot and Continue Script
  23. Hashtables and key order
  24. Executing powershell command directly in jenkins pipeline
  25. Should $null be on the left side of the equality comparison? (-eq with arrays)
  26. How can I redirect stdout and stderr without polluting PowerShell error output
  27. Using Powershell environmental variables as strings when outputting files
  28. PowerShell launch script in new instance
  29. Remove last line from file with Powershell
  30. How to return specific data type from PowerShell function i.e. DataTable

Leave a Comment