Link do materiałów: link
Hasła do maszyn: Pass2word
c:\program files\Utimaco\cryptoserver\administration
Get-ChildItem Cert:\CurrentUser\My | Where-Object { $_.EnhancedKeyUsageList.FriendlyName -contains "Code Signing" } | Select Subject
.\signtool sign /n "Nazwa certyfikatu" /tr http://timestamp.digicert.com /td sha256 /fd sha256 "plik.exe"
tpmvscmgr.exe create /name myVSC /pin prompt /adminkey random /generate
wmic /namespace:\\root\cimv2\TerminalServices PATH Win32_TSGeneralSetting Set SSLCertificateSHA1Hash="odcisk cert"
powershell:
$thumbprint = "odcisk certa"
$ts = Get-WmiObject -Namespace "root\cimv2\TerminalServices" -Class "Win32_TSGeneralSetting" -Filter "TerminalName='RDP-Tcp'"
$ts.SSLCertificateSHA1Hash = $thumbprint
$ts.Put()
Add-WindowsFeature -name ADCS-Online-Cert -IncludeAllSubFeature -IncludeManagementTools -ComputerName SVR2
certutil -url plik-z-certem
reg export HKLM\SYSTEM\CurrentControlSet\Services\CertSvc C:\CABackup\CA-registry.reg
certutil.exe –getreg ca\csp\* > csp.txt
certutil.exe –catemplates > catemplates.txt
Get-CATemplate | ForEach-Object {
$templateName = $_.Name
$template = Get-ADObject -LDAPFilter "(cn=$templateName)" -SearchBase "CN=Certificate Templates,CN=Public Key Services,CN=Services,CN=Configuration,DC=domain-component,DC=domain-component" -Properties *
$template | Export-Clixml -Path "\$templateName.xml"
----------------------------
Bogusław Gacek
gacek.b@szkolenia.dagma.pl
bogdan@itproconsulting.pl
-----------------------------