Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- param($result)
- if ($result.IsSuccess -eq $true)
- {
- # Convert CNG certificate storage to CSP (for Exchange 2013)
- $tempfile = "$env:TEMP\CertifyTemp.pfx"
- $pfx = get-pfxcertificate -filepath $result.ManagedItem.CertificatePath
- certutil -f -p Certify -exportpfx $pfx.SerialNumber $tempfile
- certutil -delstore my $pfx.SerialNumber
- certutil -p Certify -csp "Microsoft RSA SChannel Cryptographic Provider" -importpfx $tempfile
- remove-item $tempfile
- # Enable certificate for Exchange 2013 / 2016 services on same server
- Add-PSSnapIn *exchange*
- Enable-ExchangeCertificate -Thumbprint $result.ManagedItem.CertificateThumbprintHash -Services POP,IMAP,SMTP,IIS
- # update Remote Desktop Server Certificate
- $rdpWmiPath = (Get-WmiObject -class "Win32_TSGeneralSetting" -Namespace root\cimv2\terminalservices -Filter "TerminalName='RDP-tcp'").__path
- $certHash = $result.ManagedItem.CertificateThumbprintHash
- Set-WmiInstance -Path $rdpWmiPath -argument @{SSLCertificateSHA1Hash="$certHash"}
- }
- else
- {
- Write-Output "An error occurred retrieving the TLS certificate..."
- }
Add Comment
Please, Sign In to add comment