A valid server authentication certificate must be installed on the target machine in order to enable HTTPS.
To enable HTTPS access:
winrm quickconfig -transport:https
The above command enabled HTTPS access using the certificate installed on the host.
If you want to use a different certificate, you can create a new HTTPS listener and specify the certificate:
winrm create winrm/config/listener?Address=*+Transport=HTTPS @{Hostname="<host>";CertificateThumbrint="<thumbprint>"}
Where:
In environments where an in-house certificate granting authority (CA) is in use, the CA’s certificate must be added to the Agent Manager's truststore.
To add the certifficate:
fglam --add-certificate alias=/path/to/saved.ca.certificate
Notes:
The attached PDF document "Configure Winrm HTTPS.pdf" includes example steps to import a new certificate and to add thumbprint of new certificate to the WinRM HTTPS listener.
After completing the process:
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center