tessl/pypi-pywinrm
Python library for Windows Remote Management (WinRM) service enabling remote command execution and PowerShell scripts on Windows machines.
- Workspace
- tessl
- Visibility
- Public
- Created
- Last updated
- Describes
'%3e%3cpath%20d='M3.389%209.069c0-.009.043-.033.029-.044L.029%207.77l3.287-1.197L6.574%207.77l.106.083.005%204-3.297%201.185V9.068ZM13.582%209.32V2.74l3.405%201.238v4.104L13.583%209.32ZM10.253%2014.66l-3.476%201.268v-4.027l3.476-1.313v4.072ZM10.253%2010.558l-3.476%201.239V7.784l3.476-1.268v4.042ZM10.253%2014.719v3.968L6.777%2020v-3.998l3.476-1.283ZM17%208.139v4.042l-3.418%201.239V9.378L17%208.138ZM3.3%2017.168%200%2015.943v-4.027l3.3%201.224v4.028ZM6.69%2011.916v4.027l-3.302%201.225v-4.072l3.301-1.18ZM6.69%203.743v4.012l-3.33-1.21V2.564l3.33%201.18Z'/%3e%3cpath%20d='M3.3%2013.066%200%2011.842V7.844l3.3%201.224v3.998ZM13.524%209.334l-.175.088.175-.014v4.027l-3.152%201.183-.06-.032v-3.983l1.986-.767-.111.006-1.876.657V6.531l3.213-1.224v4.027Zm-.263.133c-.065.008-.198.023-.233.088.065-.008.198-.023.233-.088Zm-.321.118c-.065.008-.198.023-.233.088.065-.009.198-.023.233-.088Zm-.321.118c-.066.008-.199.023-.234.088.065-.008.199-.023.234-.088ZM13.524%201.266v3.968l-3.213%201.195V2.46l3.213-1.194ZM10.253%202.475v3.968L6.777%207.726V3.743l3.476-1.268ZM8.2%204.458c-.304.064-.627.5-.708.79-.27.963.636%201.081%201.091.364.277-.437.354-1.308-.383-1.154ZM13.524%2013.51v3.983l-3.17%201.177c-.011%200-.043-.067-.043-.07v-3.895l3.213-1.195Zm-.884%201.63c-.495.085-1.068%201.015-.676%201.435.483.517%201.502-.636%201.147-1.246-.098-.169-.286-.221-.47-.19ZM10.165%202.387l-.037.065-3.395%201.249-3.345-1.212L6.88%201.21l3.285%201.178ZM13.437%201.177l-.088.073-3.057%201.127-3.034-1.082-.277-.133L10.151%200l3.286%201.177Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h17v20H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
To install, run
npx @tessl/cli install tessl/pypi-pywinrm@0.5.0index.mddocs/
PyWinRM
A Python client library for Windows Remote Management (WinRM) service that enables remote command execution and PowerShell scripts on Windows machines from any Python-capable system. It supports multiple authentication methods including basic, NTLM, Kerberos, CredSSP, and certificate-based authentication, with built-in encryption capabilities for secure communication.
Package Information
- Package Name: pywinrm
- Language: Python
- Installation:
pip install pywinrm
Optional dependencies:
- Kerberos:
pip install pywinrm[kerberos] - CredSSP:
pip install pywinrm[credssp]
Core Imports
import winrmFor direct class access:
from winrm import Session, Response, Protocol
from winrm.exceptions import WinRMError, WSManFaultErrorBasic Usage
import winrm
# Create a session with target Windows host
s = winrm.Session('windows-host.example.com', auth=('username', 'password'))
# Run a command
r = s.run_cmd('ipconfig', ['/all'])
print(f"Status: {r.status_code}")
print(f"Output: {r.std_out.decode('utf-8')}")
print(f"Error: {r.std_err.decode('utf-8')}")
# Run PowerShell script
ps_script = """
Get-ComputerInfo | Select-Object WindowsProductName, TotalPhysicalMemory
"""
r = s.run_ps(ps_script)
print(f"PowerShell result: {r.std_out.decode('utf-8')}")Architecture
PyWinRM follows a layered architecture:
- Session: High-level interface for common operations (run_cmd, run_ps)
- Protocol: Low-level SOAP/WS-Management implementation for advanced usage
- Transport: HTTP transport layer with authentication and encryption support
- Encryption: Message-level encryption for secure protocols (NTLM, Kerberos, CredSSP)
The Session class provides the most convenient interface for typical use cases, while the Protocol class offers fine-grained control over WinRM operations including shell management, streaming I/O, and timeout handling.
Capabilities
Session Interface
High-level interface for executing commands and PowerShell scripts on remote Windows machines. Provides automatic shell management and simplified error handling.
class Session:
def __init__(self, target: str, auth: tuple[str, str], **kwargs): ...
def run_cmd(self, command: str, args: collections.abc.Iterable[str | bytes] = ()) -> Response: ...
def run_ps(self, script: str) -> Response: ...Protocol Interface
Low-level SOAP protocol implementation providing full control over WinRM operations including shell lifecycle management, command streaming, and advanced configuration options.
class Protocol:
def __init__(self, endpoint: str, transport: str = "plaintext", username: str | None = None, password: str | None = None, **kwargs): ...
def open_shell(self, **kwargs) -> str: ...
def close_shell(self, shell_id: str, close_session: bool = True): ...
def run_command(self, shell_id: str, command: str, arguments: collections.abc.Iterable[str | bytes] = (), **kwargs) -> str: ...
def get_command_output(self, shell_id: str, command_id: str) -> tuple[bytes, bytes, int]: ...Response Objects
Response containers that encapsulate command execution results including output streams and exit codes.
class Response:
std_out: bytes
std_err: bytes
status_code: int
def __init__(self, args: tuple[bytes, bytes, int]): ...Authentication & Security
Support for multiple authentication methods and secure communication protocols with message-level encryption capabilities.
# Version information
__version__: str # Library version (e.g., "0.5.0")
# Feature flags for client capability detection
FEATURE_SUPPORTED_AUTHTYPES: list[str] # ["basic", "certificate", "ntlm", "kerberos", "plaintext", "ssl", "credssp"]
FEATURE_READ_TIMEOUT: bool # Read timeout support
FEATURE_OPERATION_TIMEOUT: bool # Operation timeout support
FEATURE_PROXY_SUPPORT: bool # Proxy support
# Utility functions
def strtobool(value: str) -> bool:
"""
Convert string representation of truth to True or False.
Accepts: 'true', 't', 'yes', 'y', 'on', '1' (case-insensitive) for True
Accepts: 'false', 'f', 'no', 'n', 'off', '0' (case-insensitive) for False
"""
# Transport and encryption classes
class Transport: ...
class Encryption: ...Exception Handling
Comprehensive exception hierarchy for handling WinRM-specific errors, transport failures, and authentication issues.
class WinRMError(Exception): ...
class WSManFaultError(WinRMError): ...
class WinRMTransportError(Exception): ...
class WinRMOperationTimeoutError(Exception): ...
class AuthenticationError(WinRMError): ...Types
# Required imports for type annotations
from typing import Literal, Any
import uuid
import collections.abc
import requests
# Response tuple format for command output
CommandOutput = tuple[bytes, bytes, int] # (stdout, stderr, status_code)
# Authentication tuple format
AuthTuple = tuple[str, str] # (username, password)
# Transport types
TransportType = Literal["auto", "basic", "certificate", "ntlm", "kerberos", "credssp", "plaintext", "ssl"]
# Server certificate validation options
CertValidationType = Literal["validate", "ignore"]
# Message encryption options
EncryptionType = Literal["auto", "always", "never"]
# CA trust path options
CATrustPathType = Literal["legacy_requests"] | str
# Proxy configuration options
ProxyType = Literal["legacy_requests"] | str | None