Hi guys,
I have two serves,
server A---------Host Server
Server-B-------- Windows 2008 r2 server with visual studio
Im running some powershell commands from a c# program from server B to Server A which require delegating credentials, so what i did is
Enable-WSManCredSSP -Role server ---- I have run this command on server A
Enable-WSManCredSSP -Role client -DelegateComputer * --- and this one on server B
with my previous experiences with the above cmdlets, my c# program should be working fine with Credssp authentication mechanism, but im getting a strange error, it says :
Connecting to remote server failed with the following error message : The WinRM client cannot process the request. A computer policy does not allow the delegation of the user credentials to the target computer because the computer is not trusted. The identity of the target computer can be verified if you configure the WSMAN service to use a valid certificate using the following command: winrm set winrm/config/service '@{CertificateThumbprint="<thumbprint>"}' Or you can check the Event Viewer for an event that specifies that the following SPN could not be created: WSMAN/<computerFQDN>. If you find this event, you can manually create the SPN using setspn.exe . If the SPN exists, but CredSSP cannot use Kerberos to validate the identity of the target computer and you still want to allow the delegation of the user credentials to the target computer, use gpedit.msc and look at the following policy: Computer Configuration -> Administrative Templates -> System -> Credentials Delegation -> Allow Fresh Credentials with NTLM-only Server Authentication. Verify that it is enabled and configured with an SPN appropriate for the target computer. For example, for a target computer name "myserver.domain.com", the SPN can be one of the following: WSMAN/myserver.domain.com or WSMAN/*.domain.com. Try the request again after these changes. For more information, see the about_Remote_Troubleshooting Help topic.
can anyone help me here.. why this is happening and how i can resolve it, when i run Get-WSManCredssp, it says that both server and client are properly configured.
plz help me guyz
