Disable-WSManCredSSP - Powershell 2.0 CmdLet

ActiveXperts Network Monitor ships with integrated Powershell scripts to monitor complex network. The scripts run out of the box
Download the ActiveXperts Network Monitor FREE version now »

Disable-WSManCredSSP

Short description
Disables Credential Security Service Provider (CredSSP) authentication on a client computer.

Syntax


Description
The Disable-WSManCredSPP cmdlet disables CredSSP authentication on a client or on a server computer. When CredSSP a
    uthentication is used, the user's credentials are passed to a remote computer to be authenticated. This type of aut
    hentication is designed for commands that create a remote session from within another remote session. For example, 
    you use this type of authentication if you want to run a background job on a remote computer. 
    
    The cmdlet is used to disable CredSSP on the client by specifying Client in the Role parameter. The cmdlet then per
    forms the following:
    
        - Disables CredSSP on the client. The WS-Management setting <localhost|computername>\Client\Auth\CredSSP is set
     to false.
        - Removes any WSMan/* setting from the Windows CredSSP policy AllowFreshCredentials on the client. 
    
    The cmdlet is used to disable CredSSP on the server by specifying Server in the Role parameter. The cmdlet then per
    forms the following:
    
       - Disables CredSSP on the server. The WS-Management setting <localhost|computername>\Service\Auth\CredSSP is set
     to false. 
    
    Caution: CredSSP authentication delegates the user's credentials from the local computer to a remote computer. This
     practice increases the security risk of the remote operation. If the remote computer is compromised, when credenti
    als are passed to it, the credentials can be used to control the network session. 
    
    To disable CredSSP authentication, use the Disable-WSManCredSSP cmdlet.