Reputation: 45
How to run powershell commands on remote computers on different domains
I want to run a few scripts on a few servers but the issue is that all of them are on different domains. If they are on the same domain then I am able to run it is Powershell but across domains how would I do that? Can anyone throw some light on this?
Upvotes: 3
Views: 11740
Answers (3)
Reputation: 786
On the server side
Enable-PSRemoting
On Client Side, Execute the following commands:
cd wsman:localhost\Client
Set-Item AllowUnencrypted -Value $true -force
Set-Item TrustedHosts -Value * -force
Then to create session in the server machine from client machine use the following commands:
$cred=get-credential
$Session= New-PSSession -computername Server01 -credential $cred -Port 5985
Enter-PSSession $Session
(Valid Credential on Server machine should be given)
Upvotes: 3
Reputation: 68243
This might be a good application for PS constrained sessions with delegation.
You can designate the credentials that will be used to run the commnads in the session configuration, and limit what can be run in the session, so you can create a session you can connect to without having domain credentials, and within that session you can run just those scripts and they will be automatically run using credentials that are set in the session configuration.
http://ramblingcookiemonster.wordpress.com/2013/07/20/granular-access-via-powershell-remoting/
Upvotes: 1
Reputation: 3341
I don't know if you're talking 2, 20 or 200 servers here (or the number of admins), but what I would do (if I had administrative access to the domains) would be to implement some kind of "administrative execution account" on each domain. I would then build logic to save creds to file on the workstation/management server initiating the connection (if the password is the same across domains it would be very easy - maybe too easy)
It should be easy enough to build logic to pick up the correct credentials file based on the computer domain, construct a credential object, and connect with it -basically some proxy functions for the most common remoting CmdLets like new-pssession and the like.
This would ensure that each operator would have to type in the username/password to each domain manually before using the script (saving the creds to file), which should help prevent unauthorized access.
Upvotes: 0
Related Questions
- Powershell remote execution
- How to execute a powershell script available in remote machine?
- How to run PowerShell script on a remote computer?
- Run Powershell command from different server
- Send commands to remote server using powershell
- Run Remote Command via Powershell
- Running a remote cmd command in PowerShell
- Running remote scripts in powershell
- Access remote computers on cross domain using Powershell?
- Powershell Remote Commands