openwsman connection will fail when on Windows WinRM cbt is set to strict

[joschi99]

We are not aible to connect to a Windows WinRM using Kerberos authentication when on the WinRM configuration the CBT is configured to strict:

In this case the authentication will failed with the following error:

Apr  4 09:26:00 [3239] Endpoint: https://win-ohvnvel4k8j.pgum.local:5986/wsman
Apr  4 09:26:00 [3239] cl->authentication.verify_peer: 0
Apr  4 09:26:00 [3239] *****set post buf len = 1168******
*   Trying 10.10.100.219...
* TCP_NODELAY set
* Connected to win-ohvnvel4k8j.pgum.local (10.10.100.219) port 5986 (#0)
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use http/1.1
* Server certificate:
*  subject: CN=WIN-OHVNVEL4K8J.pgum.local
*  start date: Apr  4 06:00:40 2025 GMT
*  expire date: Apr  4 06:00:40 2026 GMT
*  issuer: DC=local; DC=pgum; CN=pgum-WIN-OHVNVEL4K8J-CA
*  SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.
> POST /wsman HTTP/1.1
Host: win-ohvnvel4k8j.pgum.local:5986
Accept: */*
Content-Type: application/soap+xml;charset=UTF-8
User-Agent: WS-Management for all
Content-Length: 1168
Expect: 100-continue

< HTTP/1.1 401
< Server: Microsoft-HTTPAPI/2.0
< WWW-Authenticate: Negotiate
< WWW-Authenticate: Kerberos
< Date: Fri, 04 Apr 2025 07:25:59 GMT
< Connection: close
< Content-Length: 0
<
* Closing connection 0
Apr  4 09:26:00 [3239] GSS-Negotiate authentication is used
* Hostname win-ohvnvel4k8j.pgum.local was found in DNS cache
*   Trying 10.10.100.219...
* TCP_NODELAY set
* Connected to win-ohvnvel4k8j.pgum.local (10.10.100.219) port 5986 (#1)
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* SSL re-using session ID
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use http/1.1
* old SSL session ID is stale, removing
* Server certificate:
*  subject: CN=WIN-OHVNVEL4K8J.pgum.local
*  start date: Apr  4 06:00:40 2025 GMT
*  expire date: Apr  4 06:00:40 2026 GMT
*  issuer: DC=local; DC=pgum; CN=pgum-WIN-OHVNVEL4K8J-CA
*  SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.
> POST /wsman HTTP/1.1
Host: win-ohvnvel4k8j.pgum.local:5986
Accept: */*
Content-Type: application/soap+xml;charset=UTF-8
User-Agent: WS-Management for all
Content-Length: 1168
Expect: 100-continue

< HTTP/1.1 401
< Server: Microsoft-HTTPAPI/2.0
< WWW-Authenticate: Negotiate
< WWW-Authenticate: Kerberos
< Date: Fri, 04 Apr 2025 07:25:59 GMT
< Connection: close
< Content-Length: 0
<
* Closing connection 1
* Issue another request to this URL: 'https://win-ohvnvel4k8j.pgum.local:5986/wsman'
* Hostname win-ohvnvel4k8j.pgum.local was found in DNS cache
*   Trying 10.10.100.219...
* TCP_NODELAY set
* Connected to win-ohvnvel4k8j.pgum.local (10.10.100.219) port 5986 (#2)
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* SSL re-using session ID
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use http/1.1
* old SSL session ID is stale, removing
* Server certificate:
*  subject: CN=WIN-OHVNVEL4K8J.pgum.local
*  start date: Apr  4 06:00:40 2025 GMT
*  expire date: Apr  4 06:00:40 2026 GMT
*  issuer: DC=local; DC=pgum; CN=pgum-WIN-OHVNVEL4K8J-CA
*  SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.
* Server auth using Negotiate with user ''
> POST /wsman HTTP/1.1
Host: win-ohvnvel4k8j.pgum.local:5986
Authorization: Negotiate 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
Accept: */*
Content-Type: application/soap+xml;charset=UTF-8
User-Agent: WS-Management for all
Content-Length: 1168
Expect: 100-continue

< HTTP/1.1 401
< Server: Microsoft-HTTPAPI/2.0
< WWW-Authenticate: Negotiate
< WWW-Authenticate: Kerberos
< Date: Fri, 04 Apr 2025 07:25:59 GMT
< Connection: close
< Content-Length: 0
<
* Closing connection 2
Authentication failed, please retry
Apr  4 09:26:00 [3239] GSS-Negotiate authentication is used
Apr  4 09:26:00 [3239] Invoking Auth request callback
Apr  4 09:26:00 [3239] No username. Authorization canceled
Apr  4 09:26:00 [3239] Error = 67 (Login denied); user/password wrong or empty.
Apr  4 09:26:00 [3239] curl error code: 67.
Apr  4 09:26:00 [3239] cl->response_code: 401.
Apr  4 09:26:00 [3239] cl->last_error code: 26.
UNKNOWN: Could not enumerate instances: Login denied

If we disable CBT or set it to "relaxed" it will work without any issue.

Seems that this configuration is not supported actually or did you know how we need to configure openwsman to support this?

[kkaempf]

Uhm, I'd need a Windows environment (which I don't have 😞 ) to figure this out.

Can you provide a trace without CBT set to strict ?

[joschi99]

Hi @kkaempf,
this is the debug without strcit on the same system. Please let me know if you need others

Apr  2 17:51:03 [2604] Endpoint: https://win-ohvnvel4k8j.pgum.local:5986/wsman
Apr  2 17:51:03 [2604] cl->authentication.verify_peer: 0
Apr  2 17:51:03 [2604] *****set post buf len = 1168******
*   Trying 10.10.100.219...
* TCP_NODELAY set
* Connected to win-ohvnvel4k8j.pgum.local (10.10.100.219) port 5986 (#0)
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use http/1.1
* Server certificate:
*  subject: CN=win-ohvnvel4k8j.pgum.local
*  start date: Apr  2 15:25:18 2025 GMT
*  expire date: Apr  2 15:45:18 2026 GMT
*  issuer: CN=win-ohvnvel4k8j.pgum.local
*  SSL certificate verify result: self signed certificate (18), continuing anyway.
> POST /wsman HTTP/1.1
Host: win-ohvnvel4k8j.pgum.local:5986
Accept: */*
Content-Type: application/soap+xml;charset=UTF-8
User-Agent: WS-Management for all
Content-Length: 1168
Expect: 100-continue

< HTTP/1.1 401
< Server: Microsoft-HTTPAPI/2.0
< WWW-Authenticate: Negotiate
< WWW-Authenticate: Kerberos
< Date: Wed, 02 Apr 2025 15:51:03 GMT
< Connection: close
< Content-Length: 0
<
* Closing connection 0
Apr  2 17:51:03 [2604] GSS-Negotiate authentication is used
* Hostname win-ohvnvel4k8j.pgum.local was found in DNS cache
*   Trying 10.10.100.219...
* TCP_NODELAY set
* Connected to win-ohvnvel4k8j.pgum.local (10.10.100.219) port 5986 (#1)
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* SSL re-using session ID
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use http/1.1
* old SSL session ID is stale, removing
* Server certificate:
*  subject: CN=win-ohvnvel4k8j.pgum.local
*  start date: Apr  2 15:25:18 2025 GMT
*  expire date: Apr  2 15:45:18 2026 GMT
*  issuer: CN=win-ohvnvel4k8j.pgum.local
*  SSL certificate verify result: self signed certificate (18), continuing anyway.
> POST /wsman HTTP/1.1
Host: win-ohvnvel4k8j.pgum.local:5986
Accept: */*
Content-Type: application/soap+xml;charset=UTF-8
User-Agent: WS-Management for all
Content-Length: 1168
Expect: 100-continue

< HTTP/1.1 401
< Server: Microsoft-HTTPAPI/2.0
< WWW-Authenticate: Negotiate
< WWW-Authenticate: Kerberos
< Date: Wed, 02 Apr 2025 15:51:03 GMT
< Connection: close
< Content-Length: 0
<
* Closing connection 1
* Issue another request to this URL: 'https://win-ohvnvel4k8j.pgum.local:5986/wsman'
* Hostname win-ohvnvel4k8j.pgum.local was found in DNS cache
*   Trying 10.10.100.219...
* TCP_NODELAY set
* Connected to win-ohvnvel4k8j.pgum.local (10.10.100.219) port 5986 (#2)
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* SSL re-using session ID
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use http/1.1
* old SSL session ID is stale, removing
* Server certificate:
*  subject: CN=win-ohvnvel4k8j.pgum.local
*  start date: Apr  2 15:25:18 2025 GMT
*  expire date: Apr  2 15:45:18 2026 GMT
*  issuer: CN=win-ohvnvel4k8j.pgum.local
*  SSL certificate verify result: self signed certificate (18), continuing anyway.
* Server auth using Negotiate with user ''
> POST /wsman HTTP/1.1
Host: win-ohvnvel4k8j.pgum.local:5986
Authorization: Negotiate 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
Accept: */*
Content-Type: application/soap+xml;charset=UTF-8
User-Agent: WS-Management for all
Content-Length: 1168
Expect: 100-continue

< HTTP/1.1 100 Continue
* We are completely uploaded and fine
< HTTP/1.1 200
< Content-Type: application/soap+xml;charset=UTF-8
< WWW-Authenticate: Negotiate oYG3MIG0oAMKAQChCwYJKoZIhvcSAQICooGfBIGcYIGZBgkqhkiG9xIBAgICAG+BiTCBhqADAgEFoQMCAQ+iejB4oAMCARKicQRvU1ZrdDznAnR5ruva6njwp1Brk6YXGL4YchcdVC1/9SOE1IHmbHqw+vNIvxSaOGktsAyD7AHpCux5vne0YWppJeRnxbUOV11Nffgs4laUi7HV1MMGIRLht1FIkPNJhsuzFkTahf+Sh9LLnyDmJYpy
< Server: Microsoft-HTTPAPI/2.0
< Date: Wed, 02 Apr 2025 15:51:03 GMT
< Content-Length: 1087
<
Apr  2 17:51:03 [2604] write_handler: received 1087 bytes, all = 1087

* Closing connection 2
Apr  2 17:51:03 [2604] curl error code: 0.
Apr  2 17:51:03 [2604] cl->response_code: 200.
Apr  2 17:51:03 [2604] cl->last_error code: 0.
Apr  2 17:51:03 [2604] *****set post buf len = 1016******
* Hostname win-ohvnvel4k8j.pgum.local was found in DNS cache
*   Trying 10.10.100.219...
* TCP_NODELAY set
* Connected to win-ohvnvel4k8j.pgum.local (10.10.100.219) port 5986 (#3)
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* SSL re-using session ID
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use http/1.1
* old SSL session ID is stale, removing
* Server certificate:
*  subject: CN=win-ohvnvel4k8j.pgum.local
*  start date: Apr  2 15:25:18 2025 GMT
*  expire date: Apr  2 15:45:18 2026 GMT
*  issuer: CN=win-ohvnvel4k8j.pgum.local
*  SSL certificate verify result: self signed certificate (18), continuing anyway.
> POST /wsman HTTP/1.1
Host: win-ohvnvel4k8j.pgum.local:5986
Accept: */*
Content-Type: application/soap+xml;charset=UTF-8
User-Agent: WS-Management for all
Content-Length: 1016

* upload completely sent off: 1016 out of 1016 bytes
< HTTP/1.1 401
< Server: Microsoft-HTTPAPI/2.0
< WWW-Authenticate: Negotiate
< WWW-Authenticate: Kerberos
< Date: Wed, 02 Apr 2025 15:51:03 GMT
< Connection: close
< Content-Length: 0
<
* Closing connection 3
* Issue another request to this URL: 'https://win-ohvnvel4k8j.pgum.local:5986/wsman'
* Hostname win-ohvnvel4k8j.pgum.local was found in DNS cache
*   Trying 10.10.100.219...
* TCP_NODELAY set
* Connected to win-ohvnvel4k8j.pgum.local (10.10.100.219) port 5986 (#4)
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* SSL re-using session ID
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use http/1.1
* old SSL session ID is stale, removing
* Server certificate:
*  subject: CN=win-ohvnvel4k8j.pgum.local
*  start date: Apr  2 15:25:18 2025 GMT
*  expire date: Apr  2 15:45:18 2026 GMT
*  issuer: CN=win-ohvnvel4k8j.pgum.local
*  SSL certificate verify result: self signed certificate (18), continuing anyway.
* Server auth using Negotiate with user ''
> POST /wsman HTTP/1.1
Host: win-ohvnvel4k8j.pgum.local:5986
Authorization: Negotiate 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
Accept: */*
Content-Type: application/soap+xml;charset=UTF-8
User-Agent: WS-Management for all
Content-Length: 1016

* upload completely sent off: 1016 out of 1016 bytes
< HTTP/1.1 200
< Content-Type: application/soap+xml;charset=UTF-8
< WWW-Authenticate: Negotiate oYG3MIG0oAMKAQChCwYJKoZIhvcSAQICooGfBIGcYIGZBgkqhkiG9xIBAgICAG+BiTCBhqADAgEFoQMCAQ+iejB4oAMCARKicQRvKmEz72ZPs4dPqJ2LdZ7gqmnDl8YhuRfByABiv4VLcDWDCNkjOZQRRNlSFJ6a81BVIlIFRI8aE0j+h78kaC0R2xF2cWNs8C9U9UgtNUCdci+3IZ9zCek6/1qWK9hh7eKestY0l+YX6beoAN7u9fnu
< Server: Microsoft-HTTPAPI/2.0
< Date: Wed, 02 Apr 2025 15:51:03 GMT
< Content-Length: 1004
<
Apr  2 17:51:03 [2604] write_handler: received 1004 bytes, all = 1004

* Closing connection 4
Apr  2 17:51:03 [2604] curl error code: 0.
Apr  2 17:51:03 [2604] cl->response_code: 200.
Apr  2 17:51:03 [2604] cl->last_error code: 0.

[joschi99]

if you need we have here a test system to simulate this case

[joschi99]

Hi @kkaempf, did you have any news on this? As I can reproduce the problem on our lab let me know how can I help you.

Thanks

[joschi99]

Hi,
for us this request it is important, we use this library into our solution to monitor windows systems using WinRM. Can you provide us a update? If it can help we are open to discuss some sponsoring of this project.