Forum Discussion
Securing (SSL) WINRM connection to remote servers
Honolulu uses WinRM via TCP/5985 to connect to remote servers. Only to my knowledge WinRM via TCP/5985 by default is not encrypted. How can we use Project Honolulu with WinRM via HTTPS (TCP/5986)?
Actually, WinRM over HTTP is encrypted if you don't use Basic or Digest authentication.
https://foxdeploy.com/2017/02/08/is-winrm-secure-or-do-i-need-https/
The communication is still encrypted, but you can't verify server identity. A hacker can steal NTLM hash and crack it.
Everything is good if your machines are in domain. Kerberos is used in this case.