Managing Hyper-V Remotely

Technical ramblings and humbly honest opinions of fact

Managing Hyper-V Remotely

While it can be convenient to RDP (Remote Desktop Protocol) into your Hyper-V host and use the manager on the server directly, I prefer to run the Hyper-V Manager from my local machine.

Posted below are the steps to take to install the Hyper-V management tools, enable credential delegation, and connect to your host from your local machine.

Install the Hyper-V Management Tools

From Add/Remove Programs, select ‘Turn Windows features on or off‘, then check the Hyper-V Management Tools

Once installed, you will have the Hyper-V Manager under ‘Windows Administrator Tools‘ in your Start menu

But, when trying to connect to the remote server using our credentials we are prompted to allow delegation, which then fails.

Enabling Remote Management and Credential Delegation

For the next step, open a PowerShell window as an Administrator.

Run ‘winrm quickconfig‘ to enable Windows Remote Management on your machine

Warning: This will fail if any network adapter is set to ‘Public,’ to change this please refer to the following answer

Once WinRM is enabled, we will have to configure Windows Credential Security Support Provider (CredSSP) authentication for this machine from the Hyper-V host

Run ‘Enable-WSManCredSSP -Role “Client” -DelegateComputer “{hyper-v host FQDN}

Now that Windows Remote Management and the Credential Security Support Provider are configured we can attempt to login, but will be greeted with the following error.

Enable NTLM-only Server Authentication from the host

Open ‘gpedit.msc’ and navigate to the following tree: Computer Configuration -> Administrative Templates -> System -> Credential Delegation

Select ‘Allow delegating fresh credentials with NTLM-only server authentication’

Enable the policy and add your Hyper-V host as an allowed server.


Also: You can set WSMAN/*.fqdn.tld to allow all servers to provide credentials, but this may be a security risk

Now use Hyper-V Manager to ‘Connect to Server..‘ and voilà!


Leave a Reply

Your email address will not be published. Required fields are marked *

%d bloggers like this: