Thomas Stensitzki Apoc70
Apoc70
/ Single-Name-Certificate-Request.inf
Last active
September 13, 2023 13:13
Beispiel einer .inf-Datei für die Erstellung eines Einzelnamen-Zertifikates
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [Version] | |
| Signature="$Windows NT$" | |
| [NewRequest] | |
| Subject = "CN=mail.varunagroup.de,OU=IT,O=Varunagroup AG,L=Berlin,S=BE,C=DE" ; Remove to use an empty Subject name. | |
| Exportable = TRUE ; TRUE = Private key is exportable | |
| KeyLength = 2048 ; Valid key sizes: 1024, 2048, 4096, 8192, 16384 | |
| KeySpec = 1 ; Key Exchange – Required for encryption | |
| KeyUsage = 0xA0 ; Digital Signature, Key Encipherment |
Apoc70
/ SAN-Certificate-Request.inf
Created
June 16, 2018 17:39
Beispiel einer .inf-Datei für die Erstellung eines SAN-Zertifikates
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [Version] | |
| Signature="$Windows NT$" | |
| [NewRequest] | |
| Subject = "CN=mail.varunagroup.de,OU=IT,O=Varunagroup AG,L=Berlin,S=BE,C=DE" ; Remove to use an empty Subject name. | |
| Exportable = TRUE ; TRUE = Private key is exportable | |
| KeyLength = 2048 ; Valid key sizes: 1024, 2048, 4096, 8192, 16384 | |
| KeySpec = 1 ; Key Exchange – Required for encryption | |
| KeyUsage = 0xA0 ; Digital Signature, Key Encipherment |
Apoc70
/ Update-UPN.ps1
Last active
October 25, 2021 07:00
Update UPN suffix for all users in preparation Azure AD Connect
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Update the User Principal Name for all User Objects | |
| $CustomDomain = "mcsmemail.de" | |
| # Add custom domain as suffix first | |
| Get-ADForest | Set-ADForest -UPNSuffixes @{add=$CustomDomain} | |
| # Update all user objects | |
| Get-ADUser -Filter * -Properties SamAccountName | ForEach-Object { Set-ADUser $_ -UserPrincipalName ($_.SamAccountName + "@$($CustomDomain)" )} |
Apoc70
/ Set-TLS12.ps1
Last active
May 17, 2024 16:15
PowerShell script to enable TLS 1.2 in preparation for Entra ID Connect, and to disable legacy TLS for Exchange Server 2019.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| param ( | |
| [switch]$DisableLegacyTls | |
| ) | |
| # Last updated: 2024-02-21 | |
| if($DisableLegacyTls) { | |
| # Disable TLS 1.0 and 1.1 | |
| # Following https://learn.microsoft.com/exchange/plan-and-deploy/post-installation-tasks/security-best-practices/exchange-tls-configuration?view=exchserver-2019&WT.mc_id=M365-MVP-5003086 | |
| # Disable TLS 1.0 |
Apoc70
/ Clear-ADCDisabledMail.ps1
Last active
October 25, 2021 12:56
This scripts clears the attribute legacyExchangeDN if set to ADCDisabledMail
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This script clears the legacyExchangeDN attribute of AD objects if the attribute is set to ADCDisabledMail | |
| # Active Directory search base, adjust as needed for your AD | |
| $SearchBase = 'DC=VARUNAGROUP,DC=DE' | |
| # Our search filter | |
| $Filter = 'legacyExchangeDN -eq "ADCDisabledMail"' | |
| $csvFilename = 'ADCDisabledMail-Users.csv' | |
| # Search for user objects matching the filter in the defined search base |
Apoc70
/ nginx.conf
Created
August 1, 2022 18:34
Partial nginx.conf file for an Exchange 2019 reverse proxy configuration
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| user www-data; | |
| worker_processes auto; | |
| pid /run/nginx.pid; | |
| load_module modules/ndk_http_module.so; | |
| load_module modules/ngx_http_lua_module.so; | |
| load_module modules/ngx_stream_lua_module.so; | |
| load_module modules/ngx_http_headers_more_filter_module.so; | |
| events { |
Apoc70
/ Create-TestUsers.ps1
Created
August 29, 2022 14:18
A simple script fro creating test user accounts in AD.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Number of user accounts to create | |
| $UserCount = 5 | |
| $RandomPassword = $true | |
| $DefaultPassword = 'Pa55w.rd' | |
| # User name prefix | |
| # New user object will be named TestUser1, TestUser2, ... | |
| $TestUserPrefix = 'TestUser' | |
| # User object properties | |
| $GivenName = 'Test' |
Apoc70
/ Add-EXOSmtpGatewayConnectors.ps1
Created
February 5, 2023 08:43
This PowerShell script creats an Exchange Online inbound and outbound connector, and adds a transport rulle for the outbound connector.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Name of the on-premises SMTP gateway | |
| $GatewayName = 'NoSpamProxy' | |
| # TLS certificate common name for incoming connection to EOP | |
| $InboundTlsCN = 'smpto.varunagroup.de' | |
| # TLS certificate common name for outgoing connection to EOP | |
| $OutboundTlsCN = 'smpto.varunagroup.de' | |
| # Fully qualified domain name (FQDN) of the on-premises SMTP gateway |
Apoc70
/ MessageModify.cs
Created
March 10, 2023 17:24
Example for intercepting email messages in an Exchange 2010 transport queue
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // AttachmentModify | |
| // ---------------------------------------------------------- | |
| // Example for intercepting email messages in an Exchange 2010 transport queue | |
| // | |
| // The example intercepts messages sent from a configurable email address(es) | |
| // and checks the mail message for attachments have filename in to format | |
| // | |
| // WORKBOOK_{GUID} | |
| // | |
| // Changing the filename of the attachments makes it easier for the information worker |
Apoc70
/ Get-AllMailUsers.ps1
Created
June 1, 2023 10:59
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Fetch all mail users | |
| $DomainNameFilter = '*varunagroup.de' | |
| Get-MailUser -ResultSize Unlimited | ?{$_.ExternalEmailAddress -like $DomainNameFilter} | Sort-Object DisplayName | Select-Object DisplayName, PrimarySmtpAddress |
OlderNewer