Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Cannot Install Agent Via Remote PowerShell

PowerShell Agent Installation

Cannot Install Agent Via Remote PowerShell

by  markdmac  Posted    (Edited  )
While attempting to migrate from SCOM 2007 to SCOM 2012, I encountered a number of servers that were not configured for remote PowerShell sessions. We tried to force running WinRM QuickConfig but received an error indicating that the server was missing needed http and https SPN values. The following script is what I came up with the resolve the missing SPN values. Once this was resolved I was able to enable PS Remoting and could then install the new 2012 agent.

Please note that this script can simply be run via PowerShell and will relaunch itself elevated if it detects it is not already elevated. Once the SPN is fixed it enables PS Remoting. Please also note that if the required SPN values exist then the command is not processed. This script is for 2008 and newer servers, Server 2003 does not have the SETSPN program available.

[code ]$ErrorAction = "SilentlyContinue"

function Use-RunAs
{
# Check if script is running as Adminstrator and if not use RunAs
# Use Check Switch to check if admin

param([Switch]$Check)

$IsAdmin = ([Security.Principal.WindowsPrincipal] [Security.Principal.WindowsIdentity]::GetCurrent()`
).IsInRole([Security.Principal.WindowsBuiltInRole] "Administrator")

if ($Check) { return $IsAdmin }

if ($MyInvocation.ScriptName -ne "")
{
if (-not $IsAdmin)
{
try
{
$arg = "-file `"$($MyInvocation.ScriptName)`""
Start-Process "$psHome\powershell.exe" -Verb Runas -ArgumentList $arg -ErrorAction 'stop'
}
catch
{
Write-Warning "Error - Failed to restart script with runas"
break
}
exit # Quit this session of powershell
}
}
else
{
Write-Warning "Error - Script must be saved as a .ps1 file first"
break
}
}

Use-RunAs

$OS = [environment]::OSVersion.Version
If ($OS.Major -eq 6){
$Computer = $Env:ComputerName
$Domain = (gwmi WIN32_ComputerSystem).Domain
Invoke-Expression "SETSPN -A http/$Computer.$Domain $Computer"
Invoke-Expression "SETSPN -A http/$Computer $Computer"
Invoke-Expression "SETSPN -A https/$Computer.$Domain $Computer"
Invoke-Expression "SETSPN -A https/$Computer $Computer"
}
Invoke-Expression "Enable-PSRemoting -Force"
[/code]
Register to add this FAQ to your archive
Register to rate this FAQ  : BAD 1 2 3 4 5 6 7 8 9 10 GOOD
Please Note: 1 is Bad, 10 is Good :-)

Part and Inventory Search

Back
Top