Ask Your Question

DSC: server rejected client credentials

asked 2017-06-15 16:57:04 -0500

xyker gravatar image

I am trying to use the DSC Puppet module to create a replicate domain controller. However when running dsc_xaddomaincontroller, I am returned with "The server has rejected the client credentials".

I am passing into "domainadministratorcredential" and "safemodeadministratorpassword" something similar to the following:

dscuser { ‘sampleadmin’: dscusername => 'Administrator', dscdescription => 'administrative’, dscensure => present, dscpassword => { 'user' => pwhash(‘sampledomain\administrator','SHA-512', 'mysalt'), 'password' => pwhash(‘SuperPassword’, 'SHA-512','mysalt') }, dscpasswordneverexpires => false, dsc_disabled => true, }

Any insight into this?

edit retag flag offensive close merge delete

1 Answer

Sort by » oldest newest most voted

answered 2018-02-28 08:57:13 -0500

Your example uses dsc_user, but you state dsc_xaddomaincontroller. If I remember correctly the User DSC Resource cannot create AD Domain accounts.

If you are saying that dsc_xaddomaincontroller is throwing that error, then it's likely that your pwhash function is not returning a value, as that error reads like the credentials are incorrect.

You can follow the readme here to 'see' what code Puppet has created to send to DSC to invoke your manifest, so you can tell exactly what is being resolved.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools


Asked: 2017-06-15 16:55:46 -0500

Seen: 651 times

Last updated: Feb 28