### -----------------------------------------------------------------
### Written by Matt Brown
###
### Description: This Grabs a list of all the Domain Controllers and tries to connect to them via SSL over Port 636
###
### -----------------------------------------------------------------
$DCList = @(
"dc1.domain.com",
"dc2.domain.com",
"dc3.domain.com",
"dc4.domain.com",
"domain.com"
)
$DCList | foreach {
$DC = $_
$LDAPS = [ADSI]"LDAP://$($DC):636"
try {
$Connection = [adsi]($LDAPS)
} Catch {
}
if ($Connection.Path) {
Write-Host "Active Directory server correctly configured for SSL, test connection to $($LDAPS.Path) completed." -foregroundcolor Green
} else {
Write-Host "Active Directory server not configured for SSL, test connection to LDAP://$($DC):636 did not work." -ForegroundColor Yellow
}
}
Wednesday, November 12, 2014
Powershell: Test Domain Controller Certificates
When replacing Domain Controller certificates for Active Directory with a valid 3rd party certificate I use this script to quickly test my domain and all my domain controllers directly to make sure they are serving out the certificate.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment