PSPKIAudit
PSPKIAudit copied to clipboard
GhostPack
PowerShell toolkit for AD CS auditing based on the PSPKI toolkit.
Hello! First of all, many thanks for your hard work! I am getting this wierd error when running Invoke-PKIAudit: ``` === Certificate Authority === ComputerName : ca.contoso.com CAName : CA...
-CAName
Hi, I have an issue when i try this command Invoke-PKIAudit [-CAComputerName mycaserver | -CAName mylocalca The commande -CAName is not recognized as the name of a cmdlet, functio, script...
I'm the author of PSPKI module which is used by PSPKIAudit. For past time I've actively worked on bug fixing in PSPKI and would like to execute integration tests with...
Hi, did you succeed in using your module from a non joined machine (runas /netonly) ?. I'm facing this issue: ``` > Get-AuditCertificateAuthority -CAComputerName ac1.contoso.local Exception calling "GetAdPkiContainer" with "1"...
I can not get this running performing as the readme says, imported the invoke-pkiaudit.ps1 into the session, then it worked. Any ideas on this?
Method invocation failed because [System.Uri] does not contain a method named 'new'. At C:\Users\shiva\Downloads\PSPKIAudit-main\PSPKIAudit-main\Code\Invoke-PKIAudit.ps1:333 char:5 $Cache.Add([System.Uri]::new($URL), $AuthType, [System.Net.CredentialCache]: ... CategoryInfo : InvalidOperation: (:) [], RuntimeException FullyQualifiedErrorId : MethodNotFound I'm getting...
Get-ADObject $CA.DistinguishedName gives Null value: ``` Get-ADObject : Cannot validate argument on parameter 'Identity'. The argument is null. Provide a valid value for the argument, and then try running the...
When invoking PKIAudit it pulls back my CA information but after the misconfiguration section I get this error. ``` New-Object : Exception calling ".ctor" with "1" argument(s): "An invalid dn...
Right now PSPKIAudit only enumerates the forest of the currently authenticated user. This is fine if there's only one AD forest since AD CS configuration is defined Forest-wide. If there's...
It might helpful to check for Protected Users membership in one of these functions so that you can alert the users that the NTLM relay test results will not be...
