Hey guys,
Hopefully just a quick issue you can educate me on. When using the ConfigureRemotingForAnsible.ps 1 script, I find that I must still execute this afterwards to win_ping, for example

–>> winrm set winrm/config/service ‘@{AllowUnencrypted=“true”}’ .

I’m not using kerberos. I think my setup is pretty basic. Going thru the ConfigureRemoting…ps1 script, i don’t see anything about allowing unencrypted connections, but I do see this check near the end.

Is this something in development, or am I missing some basic step somewhere.

Thanks for your help so far. I appreciate it, and ansible.

hosts file

ansible_ssh_user=Administrator
ansible_ssh_pass=mypass
ansible_ssh_port=5985
ansible_connection=winrm

ansible_winrm_cert_validation= ignore

If you are using the Configure...ps1 script to set up your Windows host and WinRM you should set your port to 5986 so Ansible uses TLS to encrypt your traffic. When doing this you will also need to uncomment the ansible_winrm_server_cert_validation entry as the Configure...ps1 script created a self signed certificate by default.

If not using HTTPS with WinRM (highly insecure) then Windows forces you to allow unencrypted messages first hence the error you are getting right now. There are plans to encrypt messages through HTTP when using particular auth types but nothing has been released around it yet.