This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
## generate Certificate Signing Request (CSR) with certutil | |
$FedServiceName = "sts.clancampbell.id.au" | |
$RequestPolicy = @" | |
[Version] | |
Signature="`$Windows NT$" | |
[NewRequest] | |
Subject = "CN=$FedServiceName,OU=ICT,O=ClanCampbell,L=Brisbane,S=Queensland,C=AU" | |
Exportable = FALSE ; TRUE = Private key is exportable | |
KeyLength = 2048 ; Valid key sizes: 1024, 2048, 4096, 8192, 16384 | |
KeySpec = 1 ; Key Exchange – Required for encryption |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
### | |
# References: | |
# - https://github.com/RobBiddle/ACMESharpRoute53Automation | |
# - https://github.com/ebekker/ACMESharp/wiki/Quick-Start | |
# - https://pkisharp.github.io/ACMESharp-docs/Quick-Start | |
# - https://www.frankysweb.de/exchange-2016-lets-encrypt-zertifikat-erneuern/ | |
### | |
$BaseDomain = "clancampbell.id.au" | |
$FedServiceName = "sts.$BaseDomain" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# ADMgmt | |
## install chocolatey | |
Set-ExecutionPolicy Bypass; iex ((New-Object System.Net.WebClient).DownloadString('https://chocolatey.org/install.ps1')) | |
## install firefox | |
choco install -y firefox | |
## install AD Tools | |
Import-Module ServerManager | |
Add-WindowsFeature RSAT-AD-Tools | |
## create testing accounts | |
New-ADOrganizationalUnit -Name "Groups" -Path "OU=CLANCAMPBELL,DC=clancampbell,DC=id,DC=au" |
NewerOlder