This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 40%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHW%3C/text%3E%3C/svg%3E)
I am trying to use PowerShell from my desktop to remote to a sever and run a program there. But the job failed when the program tried to read/write a txt file from another server. The error message is 'Insufficient Authorization'.
The code I am using is as following
$username = 'myusername'
$password = get-content C:\users\cred.txt
$secureStringPwd = ConvertTo-SecureString $password -AsPlainText -Force
$creds = New-Object System.Management.Automation.PSCredential ($username, $secureStringPwd)
Invoke-Command -ComputerName server1 -Credential $creds -ScriptBlock {
& 'F:\batchfiles\test.cmd'
}
I searched looks like it is the second hop problem. I looked through the following doc
https://learn.microsoft.com/en-us/powershell/scripting/learn/remoting/ps-remoting-second-hop?view=powershell-7
I modify the code to
$username = 'myusername'
$password = get-content C:\users\cred.txt
$secureStringPwd = ConvertTo-SecureString $password -AsPlainText -Force
$creds = New-Object System.Management.Automation.PSCredential ($username, $secureStringPwd)
Invoke-Command -ComputerName server1 -Credential $creds -ScriptBlock {
Invoke-Command -ComputerName server2 -Credential $Using:creds -ScriptBlock {Get-ChildItem -Path
\server2\e$\data}
& 'F:\batchfiles\test.cmd'
}
The job did listed the files under \server2\e$\data\ with the PSComputerName as server1. But the cmd job still failed with the error of 'Insufficient Authorization'.
What I did wrong? How to pass my user credential into the cmd program?
Thanks!
Hi
I see 2 possible ways for your case:
for now your 2nd hop still at the same place in first invoke-command in a bat file
Thanks for your help.
I understand your recommended method one. It is just kind inconvenient especially when the file is large.
For your recommended method two, do you have a sample script? I am not an export on the coding. I am not sure I follow your suggestion correctly.
Thanks!
unfortunately i do not know what your bat file do so i do not know what method would be the best exactly for your scenario
i guess easiest way you can do, is just create scheduled task on a remote server1 and run your bat script from that task
$username = 'myusername'
$password = get-content C:\users\cred.txt
$secureStringPwd = ConvertTo-SecureString $password -AsPlainText -Force
$creds = New-Object System.Management.Automation.PSCredential ($username, $secureStringPwd)
Invoke-Command -ComputerName server1 -Credential $creds -ScriptBlock {
schtasks /create /tn TestCMD /tr 'cmd.exe /c "F:\batchfiles\test.cmd"' /sc once /sd 01/01/2030 /st 00:00
schtasks /run /tn TestCMD
}
another way with scheduled task is just provide computer name and creds directly to schtasks
$username = 'myusername'
$password = get-content C:\users\cred.txt
schtasks /create /tn TestCMD /tr 'cmd.exe /c "F:\batchfiles\test.cmd"' /sc once /sd 01/01/2030 /st 00:00 /s server1 /u $username /p $password
schtasks /run /tn TestCMD /s server1 /u $username /p $password
Thanks. I will have a try.
Actually, my goal is to schedule the job on my desktop. So I have one batch (.bat) file on my desktop which will start the powershell.exe and run a ps1 file which contains the PowerShell code listed in my question. The bump I had is that when the test.cmd run on server1, it needed to export a txt file into second server and it failed due to 'Insufficient Authorization'.