Closed markhuber closed 8 years ago
joefitzgerald
commented
9 years ago Hey @markhuber, I'm glad you're getting some use out of it. I think we should make WinRM the default mode but make it super easy to enable OpenSSH should someone wish to. This may involve just un-commenting one or a few lines in a script or an invocation of a script.
If you could help with that I would welcome the assistance!
markhuber
commented
9 years ago @joefitzgerald I'm going to wait until at least packer 1.8.3 to make this conversion. After having worked with the winrm communicator for several days, I don't feel like it's ready for primetime.
I'm specifically waiting for: https://github.com/mitchellh/packer/pull/2443 https://github.com/mitchellh/packer/pull/2505
In addition to those two pulls, I'm still seeing sporadic failures on the winrm communicator (subsequent reruns work perfectly fine... so much for idempotent builds). There are some smaller improvements I'll add in preparation on a separate PR.
cbednarski
commented
9 years ago @markhuber https://github.com/mitchellh/packer/issues/2443 and https://github.com/mitchellh/packer/issues/2505 are merged so if you want to start working on this you can pull from packer master.
I'm still seeing sporadic failures on the winrm communicator
I've seen this too in the packer test suite. There is at least one race condition that causes winrm to fail frequently. go test -race from go 1.5 identified dozens of issues in some of our upstreams. I spent a few hours looking at it but it's too many for me to fix. Related tickets: https://github.com/mitchellh/packer/issues/2312 https://github.com/masterzen/winrm/issues/27
mrled
commented
8 years ago I've been using WinRM successfully with some of my builds, but I had to make a couple of changes to the templates. If anyone is interested, this is what I had to do:
V@grant123. Before I did this, I was using the default password of vagrant, and Windows wouldn't let Packer log in as the vagrant user over WinRM, even though logging in to the console would work just fine. I am guessing they are trying to prevent weak local passwords from allowing a remote compromise, but I haven't looked into it."guest_additions_mode": "attach",
StefanScherer
commented
8 years ago @mrled Thanks for sharing your steps. Please have a look at the PR #181 where we have started to port the templates to WinRM.
vagrant which works fine. See the autounattend.xml for details (PasswordExpires=false)
sneal
commented
8 years ago Closing as general consensus is to move to WinRM as the default.
As @mrled remarked, don't upload large files over WinRM, as the protocol was not designed for that type of operation. There are various ways to get around that are easy enough to use.
ghost
commented
6 years ago Just a quick question: I am using winrm. I notice that it takes about two or three minutes before the winrm connection is ready. When I start the machine in VirtualBox it only takes a few seconds, so apparently most of the time we are just waiting for winrm to start up. I was wondering if that would be better if I would use ssh instead of winrm.
StefanScherer
commented
6 years ago Check the start type of the winrm service. The start type delayed-auto starts a service 120 seconds later.
ghost
commented
6 years ago Aha... changed the start type and and time went down to less then a minute. Super!
@joefitzgerald Really loving this project, it has been a good starting point for some of our work.
I've modified the windows 2008r2 build to no longer depend on OpenSSH and instead use the WinRM support built into Packer 1.8. I was considering sending a PR to remove OpenSSH and use WinRM instead but I realize not everyone might actually want that. What's your opinion on SSH vs WinRM and whether or not to drop the OpenSSH server?