-
Notifications
You must be signed in to change notification settings - Fork 5.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Windows provisioning -AWS #40109
Comments
This is a known issue in winrm They do not provide a way to supply an internal CA, and also do not allow for turning off ssl verification of the winrm connection. Which looks like it is going to move over to diyan/pywinrm#160 If you downgrade to Thanks, |
Alternative to this winexe can also be used according to the documentation. But I did not find and particular winexe module for Ubuntu. I will be using VMware and Azure also, what will be a better fit for all these 3 providers, winexe or winrm? |
I think you can use either of them on any of the providers. |
I know this bug is closed but you can't get pywinrm to turn of SSL verification, when calling protocol if you set server_cert_validation to |
@jborean93 This is the issue you are looking for #34783 We do not support pywinrm >=2 yet, they made a change in 0.2.0 that required a certificate, it looks like they now allow for the certificate to be ignored, but we have not made changes to allow for that. I would love a PR to enable it for the cloud pywinrm support, but right now, you will need to use pywinrm 0.1.1.
|
FWIW downgrading to pywinrm 0.1.1 doesn't resolve this problem on my setup. |
newer versions of pywinrm will be usable in develop after this is merged #42214 |
Description of Issue/Question
My profile file has the following content,
My providers file has the following,
I am trying to provision windows machine on AWS. The provisioning goes smoothly.
But when the master tries to communicate to the VM first on 445 and then 5986, both these ports timeout.
Then i used the userdata_file contents mentioned on the following link,
https://docs.saltstack.com/en/latest/topics/cloud/windows.html
When the master is trying to connect to port 5986 i simultaneously rdp to the windows machine and manually run the script. After finishing the execution i get the following error at the master,
Is there way to say verify_ssl: false or any other config parameter that i am missing?
Now if the userdata has to be passed to the provisioned machine how does it happen because the master is not at all able to communicate with the minion.
Versions Report
(Provided by running
salt --versions-report
. Please also mention any differences in master/minion versions.)Salt Version:
Salt: 2016.11.2
Dependency Versions:
cffi: 1.9.1
cherrypy: 3.2.2
dateutil: 2.6.0
gitdb: 0.5.4
gitpython: 0.3.2 RC1
ioflo: Not Installed
Jinja2: 2.8
libgit2: Not Installed
libnacl: Not Installed
M2Crypto: 0.21.1
Mako: 0.9.1
msgpack-pure: Not Installed
msgpack-python: 0.4.6
mysql-python: 1.2.3
pycparser: 2.10
pycrypto: 2.6.1
pygit2: Not Installed
Python: 2.7.6 (default, Oct 26 2016, 20:30:19)
python-gnupg: Not Installed
PyYAML: 3.10
PyZMQ: 14.0.1
RAET: Not Installed
smmap: 0.8.2
timelib: Not Installed
Tornado: 4.2.1
ZMQ: 4.0.4
System Versions:
dist: Ubuntu 14.04 trusty
machine: x86_64
release: 3.16.0-30-generic
system: Linux
version: Ubuntu 14.04 trusty
The text was updated successfully, but these errors were encountered: