In this post, you will find below some useful usage of the OpenSSL tool. This commands can be used on both Linux and Windows environment. For the Windows OS, I have choosen to use the pre-compiled packages at conan.io (version
List duplicated valid certificates on a MS PKI version 3
List duplicated valid certificates on a MS PKI version 2
Microsoft PKI: revoke expired certificates
Owncloud Passwords application migration to Passman
List duplicated valid certificates on a MS PKI
Request and remove a certificate using Active Directory templates
List AD domain controller KDC certificates
Kerberos uses certificates to encrypt communication between the Kerberos client and the Kerberos Key Distribution Center (KDC). If you’re domain controllers use certificate for KDC you can list them by runnning this script: $domains = (Get-ADForest).domains $dcs = (Get-ADForest).globalcatalogs $list