From 09514f78c319f1e66ca4047645fd4b675a6a9d91 Mon Sep 17 00:00:00 2001
From: unknown <Administrator@SRV-EXCH01.byte.trail>
Date: Thu, 30 Apr 2026 06:01:41 -0700
Subject: [PATCH] befhel ladap7

---
 befehl.txt | 30 +++++++++++++++++++++++++++++-
 1 file changed, 29 insertions(+), 1 deletion(-)

diff --git a/befehl.txt b/befehl.txt
index d0f330c..3f3fb94 100644
--- a/befehl.txt
+++ b/befehl.txt
@@ -24,4 +24,32 @@ $tcp.Connect("localhost", 636)
 $ssl = New-Object System.Net.Security.SslStream($tcp.GetStream(), $false, {$true})
 $ssl.AuthenticateAsClient("SRV-DC01.byte.trail")
 Write-Host "LDAPS funktioniert! Zertifikat: $($ssl.RemoteCertificate.Subject)" -ForegroundColor Green
-$ssl.Close(); $tcp.Close()
\ No newline at end of file
+$ssl.Close(); $tcp.Close()
+
+
+
+
+
+
+
+# Thumbprint holen
+$thumb = (Get-ChildItem Cert:\LocalMachine\My | Where-Object { $_.Subject -like "*byte.trail*" }).Thumbprint
+Write-Host "Thumbprint: $thumb"
+
+# Pruefen ob der Private Key vorhanden ist
+$cert = Get-ChildItem Cert:\LocalMachine\My\$thumb
+Write-Host "Hat Private Key: $($cert.HasPrivateKey)"
+
+# In den NTDS Personal Store legen
+$ntdsStore = New-Object System.Security.Cryptography.X509Certificates.X509Store("NTDS\Personal","LocalMachine")
+$ntdsStore.Open("ReadWrite")
+$ntdsStore.Add($cert)
+$ntdsStore.Close()
+Write-Host "Zertifikat in NTDS Store abgelegt"
+
+# NTDS neu starten
+Restart-Service NTDS -Force
+Start-Sleep -Seconds 5
+
+# Verifizieren
+certutil -verifystore "NTDS\Personal"
\ No newline at end of file