befhel ladap7

2026-04-30 06:01:41 -07:00
parent 0d57f58907
commit 09514f78c3
1 changed files with 29 additions and 1 deletions
@@ -24,4 +24,32 @@ $tcp.Connect("localhost", 636)
 $ssl = New-Object System.Net.Security.SslStream($tcp.GetStream(), $false, {$true})
 $ssl.AuthenticateAsClient("SRV-DC01.byte.trail")
 Write-Host "LDAPS funktioniert! Zertifikat: $($ssl.RemoteCertificate.Subject)" -ForegroundColor Green
-$ssl.Close(); $tcp.Close()
+$ssl.Close(); $tcp.Close()
+
+
+
+
+
+
+
+# Thumbprint holen
+$thumb = (Get-ChildItem Cert:\LocalMachine\My | Where-Object { $_.Subject -like "*byte.trail*" }).Thumbprint
+Write-Host "Thumbprint: $thumb"
+
+# Pruefen ob der Private Key vorhanden ist
+$cert = Get-ChildItem Cert:\LocalMachine\My\$thumb
+Write-Host "Hat Private Key: $($cert.HasPrivateKey)"
+
+# In den NTDS Personal Store legen
+$ntdsStore = New-Object System.Security.Cryptography.X509Certificates.X509Store("NTDS\Personal","LocalMachine")
+$ntdsStore.Open("ReadWrite")
+$ntdsStore.Add($cert)
+$ntdsStore.Close()
+Write-Host "Zertifikat in NTDS Store abgelegt"
+
+# NTDS neu starten
+Restart-Service NTDS -Force
+Start-Sleep -Seconds 5
+
+# Verifizieren
+certutil -verifystore "NTDS\Personal"