WinRM certificate auth require certain extensions and authentication methods to be enabled, you can't just use a server authentication certificate that you would use for a website for this. We even document how to create these certs using PowerShell or OpenSSL https://docs.ansible.com/ansible/latest/user_guide/windows_winrm.html#certificate. Essentially you need a certificate that is enabled for clientAuth (1.3.6.1.5.5.7.3.2) and then a subjectAltName with a specific text value that specifies your user name. On Friday, January 29, 2021 at 5:26:04 AM UTC+10 [email protected] wrote:
> Hi, > > Need help on setting up authentication between ansible and windows by > using GoDaddy certificates or any third party instead of Openssl or > SelfSigned certificate. > > I have tried many ways but its not working. i was able to import > certificate to windows but when I was trying to map certificate with local > user its not able to find thumbprint of imported certificate. so please > someone help me to resolve this. > > earlier i have tried with basic and openssl certificate auth and it was > working. > > any suggestions are well appreciated. > > Thanks, > Karthik. > -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/6170979a-f9a4-480a-93e9-2f889f10ec53n%40googlegroups.com.
