public/ZBXWinRMConfig
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

version 1.02

Browse Source
This commit is contained in:
mhorak@totalservice.cz
2025-08-25 09:31:56 +02:00
parent 2e64fb124f
commit 2958a3f82e
1 changed files with 16 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
ConfigWinRM.ps1
View File

@@ -3,7 +3,7 @@
<#PSScriptInfo
.VERSION 1.01
.VERSION 1.02
.GUID 14e0e777-6ba8-4f3f-b914-53c62e0a72aa
@@ -41,6 +41,8 @@
Updated by David Norman <david@dkn.email>
Version 1.01 - Fixed issue with HTTPS when certificate in HTTPS listener doesn't match the cert in local store
Updated by Michal Horák
Verison 1.02 - Fixed issue when script fails on removing listeners if only HTTP listener exists (no HTTPS listener exists)
Updated by Michal Horák
#>
<#
@@ -647,8 +649,13 @@ if (-not $MyError -and ($RunningConfig.WinRMListeners | Where-Object { $_.Transp
Write-MyLog -LOGSeverity "INFO" -LOGMessage ("Removing existing WinRM HTTPS listener")
try
{
Remove-WSManInstance -ResourceURI 'winrm/config/Listener' -SelectorSet $selectorset
Write-MyLog -LOGSeverity "INFO" -LOGMessage ("WinRM SSL listener removed.")
$existingHttpsListener = $RunningConfig.WinRMListeners | Where-Object { $_.Transport -eq "HTTPS" }
if ($existingHttpsListener) {
Remove-WSManInstance -ResourceURI 'winrm/config/Listener' -SelectorSet $selectorset
Write-MyLog -LOGSeverity "INFO" -LOGMessage ("WinRM SSL listener removed.")
} else {
Write-MyLog -LOGSeverity "INFO" -LOGMessage ("No WinRM HTTPS listener exists, nothing to remove.")
}
} catch
{
Write-MyLog -LOGSeverity "ERROR" -LOGMessage ("Can't remove WinRM HTTPS listener. !!!")
@@ -674,6 +681,9 @@ if (-not $MyError -and ($RunningConfig.WinRMListeners | Where-Object { $_.Transp
#--------------------------------------------------------------------------------------------------
if (-not $MyError -and -not ($RunningConfig.WinRMListeners | Where-Object { $_.Transport -eq "HTTPS" } ) -and $CFG.WINRMHTTPS.ToLower() -eq "enable")
{
# Check for existing HTTPS listener before creating certificate
$existingHttpsListener = Get-WSManInstance -ResourceURI winrm/config/listener -Enumerate | Where-Object { $_.Transport -eq "HTTPS" }
if (-not $existingHttpsListener) {
Write-MyLog -LOGSeverity "INFO" -LOGMessage ("Creating new WinRM HTTPS listener.")
try
{
@@ -707,6 +717,9 @@ if (-not $MyError -and ($RunningConfig.WinRMListeners | Where-Object { $_.Transp
$MyError = $true
}
}
} else {
Write-MyLog -LOGSeverity "INFO" -LOGMessage ("WinRM HTTPS listener already exists, skipping creation and certificate issuance.")
}
}
#--------------------------------------------------------------------------------------------------
if (-not $MyError -and $RunningConfig.WinRMListeners)