Solved

Remote Administration issue.

Posted on 2011-03-11
17
663 Views
Last Modified: 2012-05-11
Dear all,

I need help to solve issue with Server. From remote machines I cannot execute nothing on this server.

I have this setting on the server:
- Remote Managment
 Remote Managment
- Set-ExecutionPolicy Unrestricted
 Execution Policy
When I run the command for example:
winrs -r:Servername ipconfig/all

I recieve this error:
 Error
0
Comment
Question by:Gonzalo Becerra
  • 10
  • 7
17 Comments
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 35109589
Did you run "winrm quickconfig" on the server? Is the server 2008 or 2008 R2. 2008 needs the winrm 2.0 update.
0
 
LVL 1

Author Comment

by:Gonzalo Becerra
ID: 35109787
Yep I runned winrm quickconfig and see two messages ok.

I have Windows 2003 R2 Enterprise.
0
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 35111470
You installed Windows Management Framework Core package (Windows PowerShell 2.0 and WinRM 2.0)? Just wondering because I didn't bother with my older boxes.
http://support.microsoft.com/kb/968930
0
 
LVL 1

Author Comment

by:Gonzalo Becerra
ID: 35111543
Yep but this update is for Windows 2003 and we have server with Windows 2008 R2.
0
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 35111572
I think that the 2003 version is what you want. 2003 R2 is really just an add on pack to Windows 2003, so the only difference is for services that 2003 R2 updates, such as adding DFS-R. Now, Windows 2008 R2 is not at all the same as 2008.
0
 
LVL 1

Author Comment

by:Gonzalo Becerra
ID: 35111610
Yep, I have Windows 2008 R2 now and when I run a command remotly always I recieved the same error.
I cannot execute nothing remotly to this server. I don't know why.
0
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 35111686
Is your firewall active?
0
 
LVL 1

Author Comment

by:Gonzalo Becerra
ID: 35111719
No, I don't have firewall active. I have other Server with Windows 2008 R2 in the same network and work fine. I have the problem to run remotly only with this server.
0
Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

 
LVL 42

Expert Comment

by:kevinhsieh
ID: 35111740
It looks like your first screen shot is taken from Windows 2008 or 2008 R2. There is no server manager in Windows 2003.
0
 
LVL 1

Author Comment

by:Gonzalo Becerra
ID: 35111789
Yep. The All images except the last one are taken from Local server with problem (Windows 2008 R2 / ServerName: Servername1).

The last image are taken from other server we execute the command pointing to Servername1 to verify the error.
0
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 35111883
Wait, which server are you trying to manage, and from where? I thought that you are trying to manage a Windows 2003 R2 server from Windows Vista, 7, 2008, 2008 R2. Commands, such as "winrm quickconfig " need to be run on the box being managed. Your first screenshot shows you configuring the Windows 2008 R2 being configured to be remotely managed.

Are both machines members of the domain? Are you runnint winrs as a user that is an administrator on Servername1?
0
 
LVL 1

Author Comment

by:Gonzalo Becerra
ID: 35111923
No,

I have two servers with Windows 2008 R2.

Servername2 (Always work remotly)
Servername1 (not work remotly)

If I connect fromServername1 to Servername2 and execute any remotly work all fine.

If I connect from Servername2 to Servername1 and try execute any remotly I recieve the error.
0
 
LVL 1

Author Comment

by:Gonzalo Becerra
ID: 35111931
both Servers are in the Same Domain (DomainName)
0
 
LVL 1

Author Comment

by:Gonzalo Becerra
ID: 35115977
This is the Actual configuration of WINRM on Servername1

PS C:\ACO-SRVS\Scripts\Site Creation> winrm get winrm/config
Config
    MaxEnvelopeSizekb = 150
    MaxTimeoutms = 60000
    MaxBatchItems = 32000
    MaxProviderRequests = 4294967295
    Client
        NetworkDelayms = 5000
        URLPrefix = wsman
        AllowUnencrypted = false
        Auth
            Basic = true
            Digest = true
            Kerberos = true
            Negotiate = true
            Certificate = true
            CredSSP = false
        DefaultPorts
            HTTP = 5985
            HTTPS = 5986
        TrustedHosts = Servername1
    Service
        RootSDDL = O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GWGX;;;WD)
        MaxConcurrentOperations = 4294967295
        MaxConcurrentOperationsPerUser = 15
        EnumerationTimeoutms = 60000
        MaxConnections = 25
        MaxPacketRetrievalTimeSeconds = 120
        AllowUnencrypted = false
        Auth
            Basic = false
            Kerberos = true
            Negotiate = true
            Certificate = false
            CredSSP = false
            CbtHardeningLevel = Relaxed
        DefaultPorts
            HTTP = 5985
            HTTPS = 5986
        IPv4Filter = *
        IPv6Filter = *
        EnableCompatibilityHttpListener = false
        EnableCompatibilityHttpsListener = false
        CertificateThumbprint
    Winrs
        AllowRemoteShellAccess = true
        IdleTimeout = 180000
        MaxConcurrentUsers = 5
        MaxShellRunTime = 2147483647
        MaxProcessesPerShell = 15
        MaxMemoryPerShellMB = 150
        MaxShellsPerUser = 5
0
 
LVL 1

Accepted Solution

by:
Gonzalo Becerra earned 0 total points
ID: 35137296
I opened a case in Microsoft to solve this issue:

- Problem: Duplicate SPN's

- Query to verify if we have SPN Duplicated:  ldifde -f dump_spn.txt -d "dc=DOMAIN,dc=com" -p subtree -r "(servicePrincipalName=HTTP/Servername*)" -l servicePrincipalName

- Solution: Verify the log dump_spn.txt and delete the duplicates SPN.
0
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 35140637
Wow, I never would have come even close to finguring that out. Glad Microsoft was able to help you get that resolved.
0
 
LVL 1

Author Closing Comment

by:Gonzalo Becerra
ID: 35174498
I opened a case in Microsoft to solve this issue.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this previous article (https://oddytee.wordpress.com/2016/05/05/provision-new-office-365-user-and-mailbox-from-exchange-hybrid-via-powershell/), we made basic license assignments to users in O365. When I say basic, the method is the simplest way …
New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…

861 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now