Windows WSMan与基本授权_Windows_Basic Authentication_Remote Access_Winrm_Wsman

Windows WSMan与基本授权

windows

Windows WSMan与基本授权,windows,basic-authentication,remote-access,winrm,wsman,Windows,Basic Authentication,Remote Access,Winrm,Wsman,我正在尝试使用基本授权让WSMan工作。我总是遇到访问被拒绝的错误。Kerberos身份验证工作正常 Windows远程管理服务正在域A中的Windows Server 2008 R2上运行，并具有以下配置： Config MaxEnvelopeSizekb = 800 MaxTimeoutms = 600000 MaxBatchItems = 20 MaxProviderRequests = 4294967295 Client Netw

我正在尝试使用基本授权让WSMan工作。我总是遇到访问被拒绝的错误。Kerberos身份验证工作正常

Windows远程管理服务正在域A中的Windows Server 2008 R2上运行，并具有以下配置：

Config MaxEnvelopeSizekb = 800 MaxTimeoutms = 600000 MaxBatchItems = 20 MaxProviderRequests = 4294967295 Client NetworkDelayms = 5000 URLPrefix = wsman AllowUnencrypted = false Auth Basic = true Digest = true Kerberos = true Negotiate = true Certificate = true CredSSP = false DefaultPorts HTTP = 5985 HTTPS = 5986 TrustedHosts = * Service RootSDDL = O:NSG:BAD:P(A;;GA;;;S-1-5-21-2516571543-3809851355-1508507046-1008)(A;;GA;;;BA)(A;;GAGXGWGR;;;S-1-5-21-3465154619-3242790773-2173928322-17804)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD) MaxConcurrentOperations = 4294967295 MaxConcurrentOperationsPerUser = 200 EnumerationTimeoutms = 600000 MaxConnections = 15 MaxPacketRetrievalTimeSeconds = 120 AllowUnencrypted = true Auth Basic = true Kerberos = true Negotiate = true Certificate = true CredSSP = true CbtHardeningLevel = Relaxed DefaultPorts HTTP = 5985 HTTPS = 5986 IPv4Filter = * IPv6Filter = * EnableCompatibilityHttpListener = false EnableCompatibilityHttpsListener = false CertificateThumbprint = ee cd g2 5e 61 ad d0 07 07 b7 77 95 ec 38 16 02df 7f 64 51 Winrs AllowRemoteShellAccess = true IdleTimeout = 180000 MaxConcurrentUsers = 5 MaxShellRunTime = 2147483647 MaxProcessesPerShell = 15 MaxMemoryPerShellMB = 150 MaxShellsPerUser = 5 配置 MaxEnvelopeSizekb=800 最大超时=600000 MaxBatchItems=20 MaxProviderRequests=4294967295 客户 NetworkDelayms=5000 urlpeffix=wsman AllowUnencrypted=false 认证基本=真摘要=真 Kerberos=true 协商=正确证书=真 CredSSP=false 默认端口 HTTP=5985 HTTPS=5986 受信任的主机=* 服务 RootSDDL=O:NSG:BAD:P（A；；GA；；；S-1-5-21-2516571543-3809851355-1508507046-1008）（A；；GA；；；BA）（A；；GAGXGWGR；；；S-1-5-21-3465154619-3242790773-2173928322-17804）S:P（AU；FA；GA；；；WD）（AU；SA；GXGW；；；WD） MaxConcurrentOperations=4294967295 MaxConcurrentOperationsPerUser=200 枚举超时=600000 最大连接数=15 MaxPacketRetrievalTimeSeconds=120 AllowUnencrypted=true 认证基本=真 Kerberos=true 协商=正确证书=真 CredSSP=true CbtHardeningLevel=放松默认端口 HTTP=5985 HTTPS=5986 IPV4过滤器=* IPV6过滤器=* EnableCompatibilityHttpListener=false EnableCompatibilityHTTPListener=false CertificateThumbprint=ee cd g2 5e 61 ad d0 07 07 b7 77 95 ec 38 16 02df 7f 64 51 温尔斯 AllowRemoteShellAccess=true IdleTimeout=180000 MaxConcurrentUsers=5 MaxShellRunTime=2147483647 maxprocesspershell=15 MaxMemoryPerShellMB=150 MaxShellsPerUser=5 我正在域B中的Windows 7工作站上执行Test WSMan：

Test-WSMan -ComputerName https://server2008:5986 -Auth basic -Cred B\MY_USER_NAME 测试WSMan-ComputerNamehttps://server2008:5986 -Auth basic-Cred B\MY\u用户名并获取以下错误：

Test-WSMan : Access is denied. At line:1 char:11 + Test-WSMan -ComputerName https://server2008:5986 -Auth basic -Cred B\MY_USER_NAME + CategoryInfo : InvalidOperation: (https://server2008:5986:5986:String) [Test-WSMan], InvalidOperationException + FullyQualifiedErrorId : WsManError,Microsoft.WSMan.Management.TestWSManCommand Test WSMan:访问被拒绝。第1行字符：11 +测试WSMan-ComputerNamehttps://server2008:5986 -Auth basic-Cred B\MY\u用户名 +类别信息：无效操作：(https://server2008:5986:5986:String)[测试WSMan]，无效操作异常 +FullyQualifiedErrorId:WsManError，Microsoft.WSMan.Management.TestWSManCommand 请注意，以下命令工作正常：

Test-WSMan -ComputerName https://server2008:5986 -Auth kerberos 测试WSMan-ComputerNamehttps://server2008:5986 -身份验证kerberos Windows服务器上的以下日志：

Error 6/22/2012 12:21:27 PM Windows Remote Management 168 User authentication General: Sending HTTP 401 response to the client and disconnect the connection after sending the response Details: Log Name: Microsoft-Windows-WinRM/Operational Source: Microsoft-Windows-WinRM Date: 6/22/2012 12:21:27 PM Event ID: 168 Task Category: User authentication Level: Error Keywords: Security,Server User: NETWORK SERVICE Computer: server2008 Description: Sending HTTP 401 response to the client and disconnect the connection after sending the response 错误6/22/2012 12:21:27下午Windows远程管理168用户身份验证常规：向客户端发送HTTP 401响应，并在发送响应后断开连接细节：日志名称：Microsoft Windows WinRM/Operational 资料来源：Microsoft Windows WinRM 日期：2012年6月22日下午12:21:27 事件ID:168 任务类别：用户身份验证级别：错误关键词：安全，服务器用户：网络服务计算机：server2008 说明：向客户端发送HTTP 401响应，并在发送响应后断开连接有人能帮我解决这个问题吗？这是配置问题还是我做错了什么

谢谢。

WinRM basic Auth不支持域。

基本上，您只能作为目标计算机的本地用户进行身份验证

尝试将密码与用户名一起传递。我通常使用-u:B\USER\u NAME-p:谢谢，这很有用。是否有官方文件可供您参考？