Jan 05 2018 04:11 AM - edited Jan 05 2018 04:24 AM
Honolulu uses WinRM via TCP/5985 to connect to remote servers. Only to my knowledge WinRM via TCP/5985 by default is not encrypted. How can we use Project Honolulu with WinRM via HTTPS (TCP/5986)?
Apr 24 2018 04:19 PM
Jun 15 2018 08:03 AM - edited Jun 15 2018 08:05 AM
Actually, WinRM over HTTP is encrypted if you don't use Basic or Digest authentication.
https://foxdeploy.com/2017/02/08/is-winrm-secure-or-do-i-need-https/
The communication is still encrypted, but you can't verify server identity. A hacker can steal NTLM hash and crack it.
Everything is good if your machines are in domain. Kerberos is used in this case.
Jun 26 2018 11:34 AM
We are tracking this request here, please add your vote: https://windowsserver.uservoice.com/forums/295071-management-tools/suggestions/34562473-use-winrm-ov...