Create-KeyTab

1.0.2

This scipt will generate off-line keytab files for use with Active Directory (AD). While the script is designed to work independently of AD, this script can be used with a wrapper script that uses Get-ADUser or Get-ADObject to retrieve the UPN of a samaccountname or a list of samaccountnames for use in batch processing of KeyTab creation. More information at https://t
This scipt will generate off-line keytab files for use with Active Directory (AD). While the script is designed to work independently of AD, this script can be used with a wrapper script that uses Get-ADUser or Get-ADObject to retrieve the UPN of a samaccountname or a list of samaccountnames for use in batch processing of KeyTab creation. More information at https://therealadamburford.github.io/Create-KeyTab/



    Create-KeyTab.ps1

    Created : 2019-10-26
    Modified: 2020-10-26

    Created By : Adam Burford
    Modified By: Adam Burford


Notes: Create RC4-HMAC, AES128. AES256 KeyTab file. Does not use AD.
Password, ServicePRincipal/UPN must be set on AD account.
Future add may include option AD lookup for Kvno, SPN and UPN.

2019-11-11 - Added custom SALT option
2019-11-11 - Added current Epoch Time Stamp.
2019-11-12 - Added -Append option
2019-11-12 - Added -Quiet and -NoPrompt switches for use in batch mode
2019-11-14 - Added support for UPN format primary/principal (e.g. host/www.domain.com). The principal is split into an array.
            The slash is removed from the SALT calculation.

2019-11-18 - Changed output text. RC4,AES128,AES256
2019-11-18 - Created static nFold output.
2019-11-26 - Added a Get-Password function to mask password prompt input
2020-01-30 - Add Info for posting to https://www.powershellgallery.com/
2020-09-15 - Added suggested use of [decimal]::Parse from "https://github.com/matherm-aboehm" to fix timestamp error on localized versions of Windows. Line 535.
2020-10-26 - Add KRB5_NT_SRV_HST to possible PType values


Attribution:
https://tools.ietf.org/html/rfc3961
https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-kile/936a4878-9462-4753-aac8-087cd3ca4625?redirectedfrom=MSDN
https://github.com/dfinke/powershell-algorithms/blob/master/src/algorithms/math/euclidean-algorithm/euclideanAlgorithm.ps1
https://afana.me/archive/2016/12/29/how-mit-keytab-files-store-passwords.aspx/
http://www.ioplex.com/utilities/keytab.txt

Installation Options

Copy and Paste the following command to install this package using PowerShellGet More Info

Install-Script -Name Create-KeyTab

You can deploy this package directly to Azure Automation. Note that deploying packages with dependencies will deploy all the dependencies to Azure Automation. Learn More

Manually download the .nupkg file to your system's default download location. Note that the file won't be unpacked, and won't include any dependencies. Learn More

Author(s)

TRAB

Version History

Version Downloads Last updated
1.0.2 (current version) 41 11/3/2020
1.0.1 2 9/15/2020
1.0.0 61 1/30/2020