PS C:> # Install NuGet package provider
Install-PackageProvider -Name NuGet -MinimumVersion 2.8.5.201 -Force
Write-Host "[*] Installing required package provider."
Install ADCSTemplate
Write-Host "[*] Installing ADCSTemplate module."
Install-Module ADCSTemplate -Force
Import the ADCSTemplate module if not already loaded
if (-not (Get-Module -Name ADCSTemplate -ErrorAction SilentlyContinue)) {
Import-Module ADCSTemplate
}
Write-Host "[*] Required module installed and imported."
Create temporary new directory
cd
md ADCS
cd ADCS
Write-Host "[*] Temporary directory created."
Download .json template files from GitHub repo
Define the filenames to download
$fileNames = @(
"Vuln-ESC1.json",
"Vuln-ESC2.json",
"Vuln-ESC3-1.json",
"Vuln-ESC3-2.json",
"Vuln-ESC4.json"
)
$baseURL = "https://raw.githubusercontent.com/arth0sz/Practice-AD-CS-Domain-Escalation/main/Vulnerable-Templates/"
Loop through each filename and download the corresponding file
foreach ($fileName in $fileNames) {
$url = $baseURL + $fileName
Invoke-WebRequest -URI $url -OutFile $fileName
}
Write-Host "[*] Vulnerable template files downloaded."
$folderPath = Get-Location
$templates = Get-ChildItem -Path $folderPath -File
foreach ($template in $templates) {
# Get the template names from the files
$templateName = $template.BaseName
#Import and publish templates
New-ADCSTemplate -DisplayName $templateName -JSON (Get-Content .$templateName.json -Raw) -Publish
# Issue templates
Set-ADCSTemplateACL -DisplayName $templateName -Identity 'certipied\domain users' -Enroll -AutoEnroll
}
Write-Host "[*] Vulnerable templates published and issued."
Download self-signed ssl certificate template files from GitHub repo
separation needed to ensure it's not vulnerable
Invoke-WebRequest -URI "https://raw.githubusercontent.com/arth0sz/Practice-AD-CS-Domain-Escalation/main/Vulnerable-Templates/IP-ssl.json" -OutFile .\IP-ssl.json
New-ADCSTemplate -DisplayName IP-ssl -JSON (Get-Content .\IP-ssl.json -Raw) -Publish
Set-ADCSTemplateACL -DisplayName IP-ssl -Identity 'certipied\domain admins' -Enroll -AutoEnroll
cd
Remove-Item -Path ADCS -Recurse
Write-Host "[*] Temporary directory removed."
Name Version Source Summary
nuget 2.8.5.208 https://onege... NuGet provider for the OneGet meta-package manager
[] Installing required package provider.
[] Installing ADCSTemplate module.
[*] Required module installed and imported.
PSPath : Microsoft.PowerShell.Core\FileSystem::C:\ADCS
PSParentPath : Microsoft.PowerShell.Core\FileSystem::C:
PSChildName : ADCS
PSDrive : C
PSProvider : Microsoft.PowerShell.Core\FileSystem
PSIsContainer : True
Name : ADCS
FullName : C:\ADCS
Parent :
Exists : True
Root : C:
Extension :
CreationTime : 5/15/2024 12:22:42 AM
CreationTimeUtc : 5/14/2024 10:22:42 PM
LastAccessTime : 5/15/2024 12:22:42 AM
LastAccessTimeUtc : 5/14/2024 10:22:42 PM
LastWriteTime : 5/15/2024 12:22:42 AM
LastWriteTimeUtc : 5/14/2024 10:22:42 PM
Attributes : Directory
Mode : d-----
BaseName : ADCS
Target : {}
LinkType :
[] Temporary directory created.
[] Vulnerable template files downloaded.
New-ADObject : An attempt was made to add an object to the directory with a name that is already in use
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:341 char:5
-
New-ADObject -Path $TemplatePath -OtherAttributes $oa -Name $Disp ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (cn=Vuln-ESC1,CN...ngcastle,DC=com:String) [New-ADObject], ADException
- FullyQualifiedErrorId : ActiveDirectoryServer:8305,Microsoft.ActiveDirectory.Management.Commands.NewADObject
Exception calling "Translate" with "1" argument(s): "Some or all identity references could not be translated."
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:137 char:9
-
$sid = $account.Translate([System.Security.Principal.Secu ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : IdentityNotMappedException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:142 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:144 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:149 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:151 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:156 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:158 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-ADObject : An attempt was made to add an object to the directory with a name that is already in use
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:341 char:5
-
New-ADObject -Path $TemplatePath -OtherAttributes $oa -Name $Disp ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (cn=Vuln-ESC2,CN...ngcastle,DC=com:String) [New-ADObject], ADException
- FullyQualifiedErrorId : ActiveDirectoryServer:8305,Microsoft.ActiveDirectory.Management.Commands.NewADObject
Exception calling "Translate" with "1" argument(s): "Some or all identity references could not be translated."
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:137 char:9
-
$sid = $account.Translate([System.Security.Principal.Secu ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : IdentityNotMappedException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:142 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:144 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:149 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:151 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:156 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:158 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-ADObject : An attempt was made to add an object to the directory with a name that is already in use
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:341 char:5
-
New-ADObject -Path $TemplatePath -OtherAttributes $oa -Name $Disp ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (cn=Vuln-ESC3-1,...ngcastle,DC=com:String) [New-ADObject], ADException
- FullyQualifiedErrorId : ActiveDirectoryServer:8305,Microsoft.ActiveDirectory.Management.Commands.NewADObject
Exception calling "Translate" with "1" argument(s): "Some or all identity references could not be translated."
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:137 char:9
-
$sid = $account.Translate([System.Security.Principal.Secu ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : IdentityNotMappedException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:142 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:144 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:149 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:151 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:156 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:158 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-ADObject : An attempt was made to add an object to the directory with a name that is already in use
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:341 char:5
-
New-ADObject -Path $TemplatePath -OtherAttributes $oa -Name $Disp ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (cn=Vuln-ESC3-2,...ngcastle,DC=com:String) [New-ADObject], ADException
- FullyQualifiedErrorId : ActiveDirectoryServer:8305,Microsoft.ActiveDirectory.Management.Commands.NewADObject
Exception calling "Translate" with "1" argument(s): "Some or all identity references could not be translated."
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:137 char:9
-
$sid = $account.Translate([System.Security.Principal.Secu ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : IdentityNotMappedException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:142 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:144 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:149 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:151 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:156 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:158 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-ADObject : An attempt was made to add an object to the directory with a name that is already in use
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:341 char:5
-
New-ADObject -Path $TemplatePath -OtherAttributes $oa -Name $Disp ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (cn=Vuln-ESC4,CN...ngcastle,DC=com:String) [New-ADObject], ADException
- FullyQualifiedErrorId : ActiveDirectoryServer:8305,Microsoft.ActiveDirectory.Management.Commands.NewADObject
Exception calling "Translate" with "1" argument(s): "Some or all identity references could not be translated."
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:137 char:9
-
$sid = $account.Translate([System.Security.Principal.Secu ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : IdentityNotMappedException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:142 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:144 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:149 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:151 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:156 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:158 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
[*] Vulnerable templates published and issued.
New-ADObject : An attempt was made to add an object to the directory with a name that is already in use
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:341 char:5
-
New-ADObject -Path $TemplatePath -OtherAttributes $oa -Name $Disp ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (cn=IP-ssl,CN=Ce...ngcastle,DC=com:String) [New-ADObject], ADException
- FullyQualifiedErrorId : ActiveDirectoryServer:8305,Microsoft.ActiveDirectory.Management.Commands.NewADObject
Exception calling "Translate" with "1" argument(s): "Some or all identity references could not be translated."
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:137 char:9
-
$sid = $account.Translate([System.Security.Principal.Secu ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : IdentityNotMappedException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:142 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:144 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:149 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:151 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
New-Object : Exception calling ".ctor" with "6" argument(s): "Value cannot be null.
Parameter name: identity"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:156 char:27
- ... ce = New-Object System.DirectoryServices.ActiveDirectoryAccess ...
-
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (:) [New-Object], MethodInvocationException
- FullyQualifiedErrorId : ConstructorInvokedThrowException,Microsoft.PowerShell.Commands.NewObjectCommand
Exception calling "AddAccessRule" with "1" argument(s): "Value cannot be null.
Parameter name: rule"
At C:\Program Files\WindowsPowerShell\Modules\ADCSTemplate\1.0.1.0\ADCSTemplate.psm1:158 char:13
-
-
- CategoryInfo : NotSpecified: (:) [], MethodInvocationException
- FullyQualifiedErrorId : ArgumentNullException
[*] Temporary directory removed.
PS C:>