jkeiser
commented
9 years ago This is not strictly necessary for winrm to work (and winrm does work). But it's important :)
Open jkeiser opened 9 years ago
jkeiser
commented
9 years ago This is not strictly necessary for winrm to work (and winrm does work). But it's important :)
Negotiate by default on Windows. Right now, on Windows negotiation will succeed.
@adamedx says there is hacky stuff we can enable to get negotiation to succeed on Unix clients. We should negotiate and use SSL on those as well, if we set them up that way. Maybe negotiate-and-fallback always.
Add the ability to say whether or not to negotiate, but default to negotiate.
Parallels this: https://github.com/chef/knife-windows/blob/master/DOC_CHANGES.md#winrm-authentication-protocol-defaults-to-negotiate-regardless-of-name-formats