Запуск сценария Powershell на MDT2013

Я использую последовательность задач MDT для PowerShell, в которой используется такой сценарий.

      %SCRIPTROOT%\ConfigureWinRMwithCertificate_https.ps1

Сценарий отлично настраивает winrm с https, но каждый раз эта задача создает сообщение об исключении в журнале, а не вывод, который я написал внутри сценария.

В сообщении об ошибке всегда говорится, что сценарий не может быть выполнен с сетевого диска (в приведенной ниже ошибке скрыты данные IP-адреса):

      !><time="19:02:08.000+000" date="xx-xx-xxxx" component="TaskSequencePSHost" context="" type="3" thread="" file="TaskSequencePSHost">
<![LOG[NotSpecified: ('\\1.2.3.4\D$\Scripts':String) [], RemoteException]LOG]!><time="19:02:08.000+000" date="xx-xx-2022" component="TaskSequencePSHost" context="" type="3" thread="" file="TaskSequencePSHost">
<![LOG**[CMD.EXE was started with the above path as the current directory.]**LOG]!><time="19:02:08.000+000" date="xx-xx-2022" component="TaskSequencePSHost" context="" type="3" thread="" file="TaskSequencePSHost">
<![LOG[At line:1 char:1
+ winrm create winrm/config/Listener?Address=+Transport=HTTPS '@{Hostn ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]LOG]!><time="19:02:08.000+000" date="xx-xx-2022" component="TaskSequencePSHost" context="" type="3" thread="" file="TaskSequencePSHost">
<![LOG[NotSpecified: (CMD.EXE was sta...rent directory.:String) [], RemoteException]LOG]!><time="19:02:08.000+000" date="xx-xx-2022" component="TaskSequencePSHost" context="" type="3" thread="" file="TaskSequencePSHost">
<![LOG[**UNC paths are not supported. Defaulting to Windows directory.]**LOG]!><time="19:02:08.000+000" date="xx-xx-2022" component="TaskSequencePSHost" context="" type="3" thread="" file="TaskSequencePSHost">
<![LOG[At line:1 char:1
+ winrm create winrm/config/Listener?Address=+Transport=HTTPS '@{Hostn ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~]LOG]!><time="19:02:08.000+000" date="xx-xx-2022" component="TaskSequencePSHost" context="" type="3" thread="" file="TaskSequencePSHost">
<![LOG[NotSpecified: (UNC paths are n...dows directory.:String) [], RemoteException]LOG]!><time="19:02:08.000+000" date="xx-xx-2022" component="TaskSequencePSHost" context="" type="3" thread="" file="TaskSequencePSHost">
<![LOG[TSHOST: Script completed with return code 0]LOG]!><time="19:02:12.000+000" date="xx-xx-2022" component="TaskSequencePSHost" context="" type="1" thread="" file="TaskSequencePSHost">

Есть ли другой способ преодолеть эту ошибку?

фактический код сценария PowerShell:

      Function CheckWinRMHTTPSConfiguration{
[CmdletBinding()]
param(
[Parameter(Mandatory=$False)][System.Boolean]$isWinrmHttpsConfigured = $false
)

$state_of_WinrmHttps = Get-childItem -Path WSMan:\localhost\Listener | Select-Object -ExpandProperty Keys | where {$_ -match 'https'}
if($state_of_WinrmHttps){ $isWinrmHttpsConfigured = $true}
else { $isWinrmHttpsConfigured = $false}
return $isWinrmHttpsConfigured
}

Function ConfigureWinRMwithPROJECTAACertificate_https{

$Cert_output = Get-ChildItem Cert:\LocalMachine\My | Select @{N="Template";Expression={($_.Extensions |where-object {$_.oid.Friendlyname -match "Certificate Template Information"}).Format(0) -replace "(.+)?=(.+)\((.+)?", '$2'}},@{N="Subject";Expression={$_.SubjectName.name}},Thumbprint

$Thumbprint_of_PROJECTAA_Certificate = $($Cert_output.Thumbprint)

$FQDN_of_LocalMachine = ([System.Net.Dns]::GetHostByName($env:computerName).Hostname)

if(-not $Cert_output){
Write-Host "No certificate avaialable in $FQDN_of_LocalMachine"
}
elseif($Cert_output -is [System.Array]){
Write-Host "Multiple certificates are available in $FQDN_of_LocalMachine.Skipping…”
}
elseif ($Cert_output -isnot [System.Array] -and $($Cert_output.Template) -eq "ORGANIZATIONTEMPLATENAMEHERE"){
$command_construct = 'winrm create winrm/config/Listener?Address=*+Transport=HTTPS '+''''+ '@{Hostname=' +'"'+$FQDN_of_LocalMachine+'"'+';'+' CertificateThumbprint='+'"'+$Thumbprint_of_PROJECTAA_Certificate+'"'+'}'+''''
Invoke-expression -Command $command_construct
}
else{
Write-Host "nothing done"
}
}

Function ConfigureWINRM {
$state_of_WinRM_https = CheckWinRMHTTPSConfiguration
if($state_of_WinRM_https -eq $true){
Write-Host "Deleteing existing winrm https"
Invoke-Expression -Command 'winrm delete winrm/config/listener?Address=*+Transport=HTTPS';
ConfigureWinRMwithPROJECTAACertificate_https
}
else
{
Write-Host "configuring https listener for winrm"
ConfigureWinRMwithPROJECTAACertificate_https
}
}
Function Update_grouppolicy{
invoke-expression -Command 'gpupdate /force /wait:-1 /target:computer' -OutVariable gpupdate_output
Start-Sleep -Seconds 300
}
$output_Update_grouppolicy = Update_grouppolicy
if ($output_Update_grouppolicy -match "Computer Policy update has completed successfully"){
Write-Host "Computer Policy update has completed successfully"
Write-Host "Configuring winrm with https..."
ConfigureWINRM}
else { Write-Host "Group policy did not updated successfully. Thus winrm configuration with https is skipped."} 

0 ответов

Другие вопросы по тегам