- Community Home
- >
- Storage
- >
- HPE Nimble Storage
- >
- Application Integration
- >
- Problem connecting with Powershell
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-20-2017 02:32 AM
07-20-2017 02:32 AM
Problem connecting with Powershell
I'm trying to connect to our Nimble array using connect-nsgroup and I'm getting a certificate error/403 forbidden:
PS C:\Program Files\Nimble Storage\bin> Connect-NSGroup -group 1.2.3.4
cmdlet Connect-NSGroup at command pipeline position 1
Supply values for the following parameters:
credential
Get-Certificate : Failed to get website certificate. The error was 'Exception calling "GetResponse" with "0" argument(s): "The
remote server returned an error: (403) Forbidden."'.
At C:\windows\system32\windowspowershell\v1.0\Modules\NimblePowerShellToolKit\NimblePowerShellToolKit.psm1:867 char:13
+ $cert = Get-Certificate -Uri $url -TrustAllCertificates
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException
+ FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Get-Certificate
Exception calling "DownloadString" with "1" argument(s): "The remote server returned an error: (403) Forbidden."
Exception calling "DownloadString" with "1" argument(s): "The remote server returned an error: (403) Forbidden."
At C:\windows\system32\windowspowershell\v1.0\Modules\NimblePowerShellToolKit\NimblePowerShellToolKit.psm1:839 char:9
+ $response = $webClient.DownloadString($url) | ConvertFrom-Jso ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : NotSpecified: (:) [], MethodInvocationException
+ FullyQualifiedErrorId : WebException
Any ideas? Do I need a valid cert on the Nimble?
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-24-2017 10:35 AM
07-24-2017 10:35 AM
Re: Problem connecting with Powershell
Unfortunately there are a number of reasons that this could happen.
I have given a few steps below, and many of these steps are just to isolate the problem, and not long-term solutions on their own.
- 1. Disable the firewall on the server that you are running the PowerShell commands from. Temporary. We will re-enable it later, we just need to know that this ISNT the problem.
- Ensure that you are not going through a gateway or proxy that is preventing specific ports. i.e. Some gateways or proxies will prevent port 443, which prevent SSL from initiating from one side. This could also be enabled at the switch via ACLs.
- Create a new user with a with a new password. Note that the username and password are both case sensitive. This should be a local account on the array, and not a domain account.
- The IP address you are trying to communicate with needs to have Management Traffic Enabled, i.e. Cant be iSCSI access only.
If item 1 or 2 fix it, we can work on setting up rules to allow unrestricted access between these endpoints but still allow the firewall to be enforce for all other address.
If item 3 fixes it, we can look at the username and how it is formatted, is it a domain name account, is it a group account?
If you can give these a shot, and let me know I can go farther with this.
Note also, what is the command you are using; i.e.
connect-nsgroup -group 1.2.3.4 -cred $(get-credential)
Note, so that we are not troubleshooting a complete script, lets focus just on getting the above command to work, then we can go for more.
I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
