Why do I get access denied using Invoke-Command on localhost?
I have valid credentials of a Windows service account stored in $creds and want to use them to access the C:\temp\ directory on another server called remotehost. I use Invoke-Command to execute the same test twice, first on localhost (which leads to denied access) and then on remotehost (which succeeds):
Invoke-Command -ComputerName localhost -Credential $creds -ScriptBlock {
Test-Path -Path \\remotehost\C$\temp\ # access denied
}
Invoke-Command -ComputerName remotehost -Credential $creds -ScriptBlock {
Test-Path -Path \\remotehost\C$\temp\ # True
}
Can anyone explain this "access denied"? Why can I successfully connect to remotehost and execute a command there, but I cannot execute the same command from localhost directly?
Just to be sure, I also verified that the connection to localhost works:
Invoke-Command -ComputerName localhost -Credential $creds -ScriptBlock {
Test-Path -Path C:\temp # True
}
What you're experiencing is the double hop issue. You are running a remote command and trying to make another hop to a different remote system. Even though it is your local system, it is still a remote session and thus has the same limitations. You can confirm this by using your remotehost example with a 3rd remote location.
Invoke-Command -ComputerName remotehost1 -Credential $creds -ScriptBlock {
Test-Path -Path \\remotehost2\C$\temp\
}
You will also get Access Denied
My guess for why this example succeeds is windows is smart enough to know the UNC path actually points at the local system.
Invoke-Command -ComputerName remotehost1 -Credential $creds -ScriptBlock {
Test-Path -Path \\remotehost1\C$\temp\
}
- How can I get the number of CPU cores in Powershell?
- how to set help utility for my own command in batchfile?
- Facing Android Studio Emulator Error with AMD CPU [2021]
- Does Delphi treat .exe files differently based on filename length?
- A Windows-compatible C IDE that will be able to compile FFmpeg?
- How can I hook Windows functions in C/C++?
- Run a .cmd file through PowerShell
- Is there a portable C compiler for windows?
- WriteConsoleOutputCharacter not working properly
- On Windows what is the difference between Git Bash vs Windows Power Shell vs Command prompt
- tmux no server running on /tmp/tmux-*/default - Windows msys2 terminal
- Specify compiler NVCC uses to compile host-code
- Why could DDK successfully compile an invalid source file?
- How to get the path of the batch script in Windows?
- Windows Batch: Get file Path without overlaying folders from bat file
- Tracing all functions in my program
- How to find out if an MSI I just installed requested a Windows reboot?
- Error: ANDROID_HOME is not set and "android" command not in your PATH. You must fulfill at least one of these conditions.
- Cygwin compiling error: "this application has requested the runtime to terminate it in an unusual way"
- Running SSH Agent when starting Git Bash on Windows
- Extracting .jar file with command line
- Set font and font size in R Console programmatically?
- Is it secure to use a password argument in a Windows command?
- Unable to start program - Access is denied error in Visual Studio
- Chocolatey was not upgrading package to the latest version until I manually specified the version
- Low level mouse hook - mouse freeze on breakpoint
- Windows batch file - splitting a string to set variables
- How to detect when the delete key is pressed on the keyboard?
- Pasting commands after `timeout` doesn't execute them in cmd
- How to install ripgrep on Windows?