FireHelmet
commented
7 years ago A little up :)
Open FireHelmet opened 7 years ago
FireHelmet
commented
7 years ago A little up :)
vvchik
commented
7 years ago Well, it is a great idea, but I personally have a lack of time now. But it is Open Source, so PR's is highly welcomed!
FireHelmet
commented
7 years ago Hello vvchik,
This gem will solve this issue : https://github.com/NetDocuments/rd-winrm-plugin/issues/41 opened by me in few days ago.
I think this feature will be a big UP for your Rundeck plugin because it's the principal issue of winrm implementation :)
I can be a beta tester :).
Thank you !
FireHelmet
commented
7 years ago @stoned, do you have time to work on this topic :) ?
I'm not a Ruby dev :(
Thanks to all !
FireHelmet
commented
7 years ago A little up :)
UnicodeTreason
commented
6 years ago Hi Firehelmet
Is this still an issue with the latest version? I access network share locations all the time using this plugin.
FireHelmet
commented
6 years ago @JustRiedy I will try with the latest version asap. But do you have configured the CredSSP ? In addition what are the OS versions ?
UnicodeTreason
commented
6 years ago @FireHelmet I'm using the Negotiate authentication type, communicating with every server OS from 2k8 up to 2k16.
FireHelmet
commented
6 years ago @JustRiedy I have tested with latest version (1.7.0) and the issue is the same :+1:
And it's not related to a permission on the share because I can reach it from my computer with the same account used in Project definition. The job has been executed remotely from a Win2k8R2 with PowerShell 5.1
Thank you for your help.
UnicodeTreason
commented
6 years ago Can confirm, same error.
I've never noticed the issue as I always manually open, authenticate and close connections to shares, due to the complex nature of the network I am on.
Write-Host "Connecting to shared location"
net use \\SERVER.DOMAIN\IPC$ PASSWORD /USER:DOMAIN\USERNAME | Out-Null
$source = "C:\Temp"
$destination = "\\SERVER.DOMAIN\C$\DATA"
If(-Not (Test-Path $destination)){
New-Item -Path $destination -ItemType Directory | Out-Null
}
try{
#Find all files and move them to shared location
Write-Host "Starting Copy"
Get-ChildItem $source -Recurse | Move-Item -Destination $destination
Write-Host "Copy complete."
}
catch{
Write-Host "Copy of item failed."
}
net use \\SERVER.DOMAIN\IPC$ /delete | Out-NullAs I have no need for this plugin change I won't be able to get time to work on it at the moment.
It is an interesting option to have though, and I can't see any reason not to add it as an extra shell type called Powershell Elevated or something.
If you're feeling brave Ruby's not a terrible language to play with, otherwise feel free to steal my share connection method till this change can be made in the future.
FireHelmet
commented
6 years ago @JustRiedy Thanks for your code. tested and approved :+1: .
I will try to learn ruby :p...
The error above described in my first post is not an error it's related to winrm implementation...Microsoft impersonnate the winrm session when the connection is established so we cannot access to a remote location because the credential is anonymous. So we need to use Kerberos or CredSSp for multiple hop. But CredSSP doesn't work in my case and I don't know why and Kerberos is too complex and hard to configure...
Thank you for your support, keep me informed if you have time to include winrm-elevated :).
Hello,
Is it possible to add winrm-elevated from https://github.com/WinRb/winrm-elevated ?
The goal is : This gem allows you to break out of the magical WinRM constraints thus allowing to reach out to network shares and even install Windows updates, .NET, SQL Server etc.
Thank you !