1. OG_Server-Certificates

    Article: AN0002430Updated: 25.05.2020

    This function returns a list of server certificates including their properties. The list of servers is obtained from LDAP (Microsoft Active Directory).

    The output file can be used to import data into entity PK certificates.

    Main prerequisites for use

    Prerequisite Description

    Module Active Directory PowerShell Microsoft

    In order to read information about users from LDAP it is necessary to install Powershell module for Active Directory.
    Remote Differential Compression In order to read information about users from LDAP it is necessary to enable this function of the Windows system on server executing this functionality.
    AD DS and AD LDS Tools In order to read information about users from LDAP it is necessary to enable this function of the Windows system on server executing this functionality.
    Powershell v3 Microsoft Powershell version 3 or higher.

    Description

    Function creates a text file containing information about server certificates according to configuration.

    Name of the column header Description
    Server Name Server name
    Domain Name Name of the domain, which the server belongs to.
    DNS Host Name Name of server in DNS.
    Archived  
    DnesNameList  
    Enhanced Key Usage List  
    EnrollmentPolicyEndPoint AuthenticationType  
    EnrollmentPolicyEndPoint Url  
    EnrollmentServerEndPoint AuthenticationType  
    EnrollmentServerEndPoint Url  
    FriendlyName  
    Handle  
    HasPrivateKey  
    Issuer  
    IssuerName  
    NotAfter  
    NotBefore  
    PolicyId  
    PublicKey EncodedKeyValue Oid FriendlyName  
    PublicKey EncodedParameters Oid FriendlyName  
    PublicKey Key  
    PublicKey Key KeySize  
    PublicKey Key KeyExchangeAlgorithm  
    PublicKey Key SignatureAlgorithm  
    PublicKey EncodedKeyValue Oid FriendlyName  
    PublicKey EncodedParameters Oid FriendlyName  
    PublicKey Oid FriendlyName  
    PublicKey Oid Value  
    SendAsTrustedIssuer  
    SerialNumber  
    SignatureAlgorithm FriendlyName  
    SignatureAlgorithm Value  
    Subject  
    Thumbprint  
    Version  

    Parameters

    Include hereinafter stated parameters in the file og_configuration.ps1 (generic parameters shared with other functions) or in the file OG_PC-Start.config (specific parameters of this function). Parameter configuration is described in the documentation of the programme Piklo

    Parameter Description Example
    [string]$LogFile Path to the file, in which log of the function shall be stored. [string]$LogFile = "\\servername\OGoutput\Server_certificates\LogFile.txt"
    [string]$OutFile Path to the file, in which log of the function shall be stored.

    [string]$OutFile = "\\servername\Server_certificates\OutFile.txt"

    [string]$OutFileEncoding Coding of the output file. Possible options are "UTF8", "Unicode" and "DEFAULT". The value "DEFAULT" makes the file being created in the ANSI encoding.

    [string]$OutFileEncoding = "UTF8"

    [string]$Delimiter Delimiter [ ";" | "t" | "," ] - Value separator in the records. [string]$Delimiter = ";"
    [string]$HeaderOutFile Defines, wheather the output file shall include header with column names ("1") or not ("0"). [string]$HeaderOutFile = "1"

    Call

    The function is called by means of the programme Piklo, that is part of ObjectGears package, from ObjectGears script. Result of the call has to be assigned to a variable, with which the script can further work.

    a = OG.Process.RunPiklo('OG_Server-Certificates','-type C')

×