ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Remote PowerShell from Fedora to Windows

    Scheduled Pinned Locked Moved IT Discussion
    fedorawindowsremote powershell
    12 Posts 5 Posters 6.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • DustinB3403D
      DustinB3403
      last edited by

      So your saying MS can't even get this right ? 😉

      ObsolesceO 1 Reply Last reply Reply Quote 0
      • black3dynamiteB
        black3dynamite
        last edited by black3dynamite

        On Ubuntu 19.10, after installing powershell or powershell-preview via snap, you still have to installed gss-ntlmssp too.

        1 Reply Last reply Reply Quote 0
        • ObsolesceO
          Obsolesce @DustinB3403
          last edited by Obsolesce

          @DustinB3403 said in Remote PowerShell from Fedora to Windows:

          So your saying MS can't even get this right ? 😉

          Using -Authentication Negotiate specifically, requires NTLM libraries that aren't in Linux by default.

          MS doesn't recommend using NTLM. You should be using SSH with Enter-PSSession. Ideally key based.

          MS is doing it right in this case. The wrong doesn't appear to be on their end ^_^

          1 Reply Last reply Reply Quote 1
          • stacksofplatesS
            stacksofplates
            last edited by

            Is this on a domain joined box? Can you just use Kerberos for your authentication?

            black3dynamiteB 2 Replies Last reply Reply Quote 0
            • black3dynamiteB
              black3dynamite @stacksofplates
              last edited by

              @stacksofplates said in Remote PowerShell from Fedora to Windows:

              Is this on a domain joined box?

              Fedora is not joined but the Windows computer is joined to a domain.

              1 Reply Last reply Reply Quote 0
              • black3dynamiteB
                black3dynamite @stacksofplates
                last edited by

                @stacksofplates said in Remote PowerShell from Fedora to Windows:

                Can you just use Kerberos for your authentication?

                This didn't work for
                Enter-PSSession -ComputerName hostname -Authentication Kerberos -Credential 'username'

                Enter-PSSession : Connecting to remote server hostname failed with the following error message : Kerberos verify cred with password failed No credentials were supplied, or the credentials were unavailable or inaccessible For more information, see the about_Remote_Troubleshooting Help topic.
                At line:1 char:1
                + Enter-PSSession -ComputerName hostname -Authentication Kerberos -Cr ...
                + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
                + CategoryInfo          : InvalidArgument: (hostname:String) [Enter-PSSession], PSRemotingTransportException
                + FullyQualifiedErrorId : CreateRemoteRunspaceFailed
                
                
                stacksofplatesS 1 Reply Last reply Reply Quote 0
                • stacksofplatesS
                  stacksofplates @black3dynamite
                  last edited by

                  @black3dynamite said in Remote PowerShell from Fedora to Windows:

                  @stacksofplates said in Remote PowerShell from Fedora to Windows:

                  Can you just use Kerberos for your authentication?

                  This didn't work for
                  Enter-PSSession -ComputerName hostname -Authentication Kerberos -Credential 'username'

                  Enter-PSSession : Connecting to remote server hostname failed with the following error message : Kerberos verify cred with password failed No credentials were supplied, or the credentials were unavailable or inaccessible For more information, see the about_Remote_Troubleshooting Help topic.
                  At line:1 char:1
                  + Enter-PSSession -ComputerName hostname -Authentication Kerberos -Cr ...
                  + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
                  + CategoryInfo          : InvalidArgument: (hostname:String) [Enter-PSSession], PSRemotingTransportException
                  + FullyQualifiedErrorId : CreateRemoteRunspaceFailed
                  
                  

                  You'd have to join the Fedora system to the domain. Luckily it's really easy with sssd and realmd.

                  Then you can use Kerberos for both SSH and hopefully this connection as well.

                  scottalanmillerS 1 Reply Last reply Reply Quote 0
                  • scottalanmillerS
                    scottalanmiller @stacksofplates
                    last edited by

                    @stacksofplates said in Remote PowerShell from Fedora to Windows:

                    You'd have to join the Fedora system to the domain. Luckily it's really easy with sssd and realmd.

                    That's annoying when you manage lots of different domains.

                    stacksofplatesS 1 Reply Last reply Reply Quote 1
                    • stacksofplatesS
                      stacksofplates @scottalanmiller
                      last edited by

                      @scottalanmiller said in Remote PowerShell from Fedora to Windows:

                      @stacksofplates said in Remote PowerShell from Fedora to Windows:

                      You'd have to join the Fedora system to the domain. Luckily it's really easy with sssd and realmd.

                      That's annoying when you manage lots of different domains.

                      Sssd works with multiple domains. But that wasn't mentioned here.

                      Kerberos is more secure than strictly key based authentication, and easier from the user perspective anyway.

                      black3dynamiteB 1 Reply Last reply Reply Quote 0
                      • black3dynamiteB
                        black3dynamite @stacksofplates
                        last edited by

                        @stacksofplates said in Remote PowerShell from Fedora to Windows:

                        Sssd works with multiple domains.

                        If sssd is installed will I be able to use -Authentication Kerberos without needing to join to a domain or when accessing Windows machines that isn’t joined to a domain?

                        stacksofplatesS 1 Reply Last reply Reply Quote 0
                        • stacksofplatesS
                          stacksofplates @black3dynamite
                          last edited by

                          @black3dynamite said in Remote PowerShell from Fedora to Windows:

                          @stacksofplates said in Remote PowerShell from Fedora to Windows:

                          Sssd works with multiple domains.

                          If sssd is installed will I be able to use -Authentication Kerberos without needing to join to a domain or when accessing Windows machines that isn’t joined to a domain?

                          No it only works for domains.

                          1 Reply Last reply Reply Quote 0
                          • 1 / 1
                          • First post
                            Last post