-
-
Save jmmeacham/2896849a71bb1fb1697ef0b6a2bbfcd9 to your computer and use it in GitHub Desktop.
toss
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Don't set this before Set-ExecutionPolicy as it throws an error | |
$ErrorActionPreference = "stop" | |
# Remove HTTP listener | |
Remove-Item -Path WSMan:\Localhost\listener\listener* -Recurse | |
# Create a self-signed certificate to let ssl work | |
$Cert = New-SelfSignedCertificate -CertstoreLocation Cert:\LocalMachine\My -DnsName "packer" | |
New-Item -Path WSMan:\LocalHost\Listener -Transport HTTPS -Address * -CertificateThumbPrint $Cert.Thumbprint -Force | |
# WinRM | |
write-output "Setting up WinRM" | |
write-host "(host) setting up WinRM" | |
# Configure WinRM to allow unencrypted communication, and provide the | |
# self-signed cert to the WinRM listener. | |
winrm quickconfig -q | |
winrm set "winrm/config/service" '@{AllowUnencrypted="true"}' | |
winrm set "winrm/config/client" '@{AllowUnencrypted="true"}' | |
winrm set "winrm/config/service/auth" '@{Basic="true"}' | |
winrm set "winrm/config/client/auth" '@{Basic="true"}' | |
winrm set "winrm/config/service/auth" '@{CredSSP="true"}' | |
winrm set "winrm/config/listener?Address=*+Transport=HTTPS" "@{Port=`"5986`";Hostname=`"packer`";CertificateThumbprint=`"$($Cert.Thumbprint)`"}" | |
# Make sure appropriate firewall port openings exist | |
netsh advfirewall firewall set rule group="remote administration" new enable=yes | |
netsh firewall add portopening TCP 5986 "Port 5986" | |
# Restart WinRM, and set it so that it auto-launches on startup. | |
net stop winrm | |
sc config winrm start= auto | |
net start winrm |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment