Issues with System Centre 2019 Virtual Machine Manager – All showing Host Not Responding
Background – The guy who initially set this up left the company in Jul 2021. Several days after he left all servers added to VMM status’ changed to Host Not Responding. All the servers are up and running as per normal. I could be missing something very simple like the guys credentials have been saved somewhere within the program/setup but can not find them. I have gone through VMM and completed the following actions -
Selected a server -
The only options available are
Refresh
Repair
Connect or View – View Networking
Delete
Properties
Select Refresh – Status Failed with the following errors –
Error (20406)
VMM could not enumerate instances of class Msvm_VirtualSystemManagementService on the server CBRVS2019.dir.svc.accenture.com. Failed with error HRESULT 0x80070005 The WinRM client cannot process the request. The authentication mechanism requested by the client is not supported by the server or unencrypted traffic is disabled in the service configuration. Verify the unencrypted traffic setting in the service configuration or specify one of the authentication mechanisms supported by the server. To use Kerberos, specify the computer name as the remote destination. Also verify that the client computer and the destination computer are joined to a domain. To use Basic, specify the computer name as the remote destination, specify Basic authentication and provide user name and password. Possible authentication mechanisms reported by server: Negotiate Kerberos
Recommended Action
Ensure the provider is running, and then try the operation again.
Checked all passwords associated were correct – reset passwords and added them where required – no change
VMM – Run As Account
SCOM Action Accounts – APPID password, Data Warehouse Report Deployment Account, SQL Reporting services in the Service Account, Database and Execution Account. VMM – Run as Account for this APPID
Ran the following PS script as an Administrator –
winrm set winrm/config/client/auth '@{Basic="true"}'
Results -
PS C:\> winrm set winrm/config/client/auth '@{Basic="true"}'
Auth
Basic = true
Digest = true
Kerberos = true
Negotiate = true
Certificate = true
CredSSP = false
Client computer and destination computer are both joined to the same domain
Provide is running.
I tried removing and adding a server back in, options chosen as adding the server –
Resource Location - Windows Server computers in a trusted Active Directory domain
Credentials – Use an existing Run as Account – chose the same Run As Account that is used for all my other servers
Specify Windows Server computers by name – entered the Server name
Chose the server once it appeared
Host Group – chose the appropriate city host group
Confirmed the settings
Status - Failed
Error (20552)
VMM does not have appropriate permissions to access the resource 'C:\windows\system32\vmms.exe' on the pervs2019.dir.svc.accenture.com server.
Recommended Action
Ensure that Virtual Machine Manager has the appropriate rights to perform this action.
Also, verify that CredSSP authentication is currently enabled on the service configuration of the target computer pervs2019.dir.svc.accenture.com. To enable the CredSSP on the service configuration of the target computer, run the following command from an elevated command line: winrm set winrm/config/service/auth @{CredSSP="true"}
Warning (10444)
The VMM management server was unable to impersonate the supplied credentials.
Recommended Action
To add a host in a disjointed domain namespace, ensure that the credentials are valid and of a domain account. In addition, the SCVMMService must run as the local system account or a domain account with sufficient privileges to be able to impersonate other users.
Ran the elevated command –
C:\>winrm set winrm/config/service/auth @{CredSSP="true"}
WSManFault
Message
ProviderFault
WSManFault
Message = The config setting CredSSP cannot be changed because is controlled by policies. The policy would need to be set to "Not Configured" in order to change the config setting.
Error number: -2144108406 0x8033808A
Cannot change GPO controlled setting.
C:\>
Changed the Group Policy to enable CredSSP and double checked the Run As Account is an Administrator on the target server – tried re-adding the server – same results
Have also checked with the network team on the firewall rules – nothing is being blocked
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 78%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 52%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDG%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 46%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENP%3C/text%3E%3C/svg%3E)