question

BarryGavenda-6647 avatar image
0 Votes"
BarryGavenda-6647 asked shashishailaj commented

WinRM and AAD Joined Servers

We are using Alienvault which has a Vulnerability scanner built in. The issue is it uses winrm for connectivity.

I have yet to see how a 2019 Azure Active Directory system can be connected to via Winrm. Outside of opening the ports, quickconfig, etc.

Config is set to all including basic, 5985 is open in a scope that includes the source (and tried w/ everything), just can't get authentication to work (tried domain\upn, upn, AzureAD\upn, etc) unless its a local admin user, which I really don't want to do.

Is there any advice on how we can get this scenario working?

windows-serverazure-active-directory
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@BarryGavenda-6647 ,
Are you trying to connect to Azure Active Directory using WinRM ? If yes , that is not possible. If it is windows 2019 server that has been joined to azure active directory the domain\username should work without an issue. If Alienvault agent supports oAuth and provides integration with Azure active directory then AzureAD\upn or upn should work as well. Please correct me if I am wrong , I am assuming that alienvualt agent uses winrm for scanning?

0 Votes 0 ·

0 Answers