vRO: Securing Your PowerShell Execution and Password in vRO (SKKB1035)

In this blog post we will take a look at how we can secure your end to end PowerShell Execution from vRO. Including how not to show passwords when using CredSSP in a double-hop authentication scenario. Lab Environment Introduction UseCase 1 (least secure) UseCase 2 UseCase 3 (most secure) Securing the PowerShell Passowrd References Final […]

How to Add a Linux Machine as PowerShell Host in vRO (Linux PS over SSH) (SKKB1030)

In this article we will look into the alpha version of PowerShell v6 for both Linux and Windows. We will show how to execute PowerShell commands between Linux and Windows machines and Vmware vRealize Orchestrator (vRO) Introduction Lab Environment Installing and Configuring PowerShell 6 Setup on Windows Setup on Linux Installing and Configuring OpenSSH Setup […]

Troubleshooting Tips: Orchestrator PowerShell Plug-in (SKKB1028)

In this post we will take a look at some at some common issues that one might experience when using the VMware vRealize Orchestrator (vRO) PowerShell Plug-In and especially when using HTTPS protocol or Kerberos authentication for the PowerShell host (PSHost). Introduction Lab Environment Background and General Conciderations Troubleshooting issues when adding a PSHost Troubleshooting […]

Introducing the Add CredSSP to a PowerShell script (vROCmdlet) workflow (SKKB1015)

Introduction Lab Environment Getting the vROC workflow Examining the tabs Examining the Settings Presentation Tab Examining the Connection Presentation Tab Use Case 1: Execute PowerShell command locally on the PShost against the PSHost itself Use Case 2: Invoke PowerShell command locally on the PSHost against remote computer Use Case 3: Invoke PowerShell command on remote […]

Using CredSSP with the vCO PowerShell Plugin (SKKB1002)

Lab Environment Introduction Security Considerations Configure WinRM and user token delegation (CredSSP). Configure Windows Credential Delegation using the Credential Security Service Provider (CredSSP) module. Configure Windows service principal names (SPN’s) for WinRM Grant WinRM service access to the private key of valid certificate Edit the Kerberos Domain realm on the vCO Appliance (Optional/Scenario specific) Add […]