Manage reverse DNS zones with Powershell

Manage reverse DNS zones with Powershell The script is a complete tool that will perform the following tasks: list the A records in the domain name defined in the variable $dnsDomainName for each record, check if the reverse zone exist.…

Password never expires status

Description With this little script, you will have a status on the user account “Password never expires” flag. This check is done on a specific OU. You can adapt the script to run it on a domain-wide. The principe of…

Owncloud Passwords application migration to Passman

If you used the application Passwords for Owncloud to store your credentials, you have seen recently this app does not exist anymore. The application has been removed from Github and it is hard to find the documentation. This is why…

List duplicated valid certificates on a MS PKI

The following script will give you the possibility to list the valid certificates on your Active Directory PKI that are duplicated. By “duplicated”, I mean at least two valid certificates for the same Common Name.

My Powershell script categories…

Request and remove a certificate using Active Directory templates

You can request from Powershell a certificate from your Active Directory PKI. In that case you will use the cmdlet Get-Certificate. If you already know the template you want to use (for example Enhanced Web Server), you can use this…

List AD domain controller KDC certificates

Kerberos uses certificates to encrypt communication between the Kerberos client and the Kerberos Key Distribution Center (KDC). If you’re domain controllers use certificate for KDC you can list them by runnning this script:

First of all the script will…

Certificate renewal with Powershell

With the following function, it is possible to renew a Local machine certificate by providing the certificate thumbprint to the function. To simply get a certificate thumbprint, you can run this command:

If you want more information (Subject,Issuer, Validity…

Revoke a certificate that has specific properties

In the next days, I will show you how to perform specific tasks on your Microsoft PKI using Powershell. In this post, you will be able to revoke a certificate that matches your criteria. In the following example, I will…

Play with the Windows Task Scheduler and XML

You will find in this post two scripts to : create scheduled tasks on remote computers get scheduled tasks on remote computers These actions will be performed using xml and the COM object Schedule.Service. I will write another article on…

Deploy Petya vaccination files on AD domain members

I have written the following script to deploy Petya vaccination files on all Active Directory domain members. These files are simple text file deployed on the destination system folder C:\Windows. This technic has been discovered by Amit Serper and it…