Puppet Class: winrm::params

Inherited by:
winrm
Defined in:
manifests/params.pp

Summary

Parameter defaults

Overview

Parameters:

  • allow_unencrypted_enable (Boolean)

    Is unencrypted traffic allowed? Default is false.

  • auth_basic_enable (Boolean)

    Is Basic Authentication allowed? Default is false

  • auth_credssp_enable (Boolean)

    Is CredSSP Authentication allowed? Default is false

  • auth_kerberos_enable (Boolean)

    Is Kerberos Authentication allowed? Default is true

  • auth_negotiate_enable (Boolean)

    Is Negotiate Authentication allowed? Default is true

  • certificate_hash (String)

    If not using a Self Signed Certificate then this hash can be passed in and used for the HTTPs/SSL listener

  • cert_validity_days (Integer)

    Length of time in days the Self Signed certificate is good for. Default is 1095

  • cert_common_name (String)

    Common name of the self-signed or custom bound certificate. If you specify a custom certificate_hash, the CN (Common Name) in that certificate MUST match this value, otherwise the cert binding will not work.

  • execution_policy (String)

    Server execution policy to follow. Available options are: ‘AllSigned’, ‘Bypass’, ‘RemoteSigned’, ‘Restricted’, ‘Undefined’, ‘Unrestricted’ Defualt is RemoteSigned

  • http_listener_enable (Boolean)

    Should winrm be listening for http connections. Defialt is false

  • https_listener_enable (Boolean)

    Should winrm be listening for https connections. Defialt is true

  • local_account_token_filter_policy_enable (Boolean)

    If LocalAccountTokenFilterPolicy should be enabled? Default is true

  • skip_network_profile_check (Boolean)

    If Enable-PSRemoting should skip the network profile check. Default is false



47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
 
# File 'manifests/params.pp', line 47

class winrm::params {
  $allow_unencrypted_enable = false
  $auth_basic_enable = false
  $auth_credssp_enable = false
  $auth_kerberos_enable = true
  $auth_negotiate_enable = true
  $certificate_hash = ''
  $cert_validity_days = 1095
  $cert_common_name = $trusted['certname']
  $execution_policy = 'RemoteSigned'
  $http_listener_enable = false
  $https_listener_enable = true
  $local_account_token_filter_policy_enable = true
  $skip_network_profile_check = false
}