How do I connect to a Windows-secured Service Fabric cluster from a computer outside the domain? -
i have on-premises service fabric cluster security configured follows:
"security": { "servercredentialtype": "windows", "windowsidentities": { "clustergmsaidentity": "servicefabric@mydomain.com", "clusterspn": "servicefabric/servicefabric.mydomain.com", "clientidentities": [ { "identity": "mydomain\\admin1", "isadmin": true } ] } },
i have verified that
- i can connect cluster using
connect-servicefabriccluster
same machine cluster running on - i can connect service fabric explorer machine outside domain (the browser correctly prompts me windows credentials)
- if remove
"servercredentialtype": "windows",
, rebuild cluster, able connect machine outside domain
however, can't figure out how connect-servicefabriccluster
using windows authentication outside domain. i've tried
connect-servicefabriccluster -connectionendpoint 'cluster.mydomain.com:19000' -windowscredential
but results in
warning: failed contact naming service. attempting contact failover manager service... warning: failed contact failover manager service, attempting contact fmm... false connect-servicefabriccluster : not ping of provided service fabric gateway endpoints. @ line:1 char:1 + connect-servicefabriccluster -connectionendpoint 'cluster.mydomain.c ... + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + categoryinfo : invalidoperation: (:) [connect-servicefabriccluster], fabrictransientexception + fullyqualifiederrorid : testclusterconnectionerrorid,microsoft.servicefabric.powershell.connectcluster
i never prompted enter credentials. there way pass windows credentials connect-servicefabriccluster
? unable locate in the documentation connecting securely.
please try
windowscredential = $true
more info here https://docs.microsoft.com/en-us/powershell/module/servicefabric/connect-servicefabriccluster?view=azureservicefabricps
Comments
Post a Comment