Private/New-TemplateOID.ps1
|
Function New-TemplateOID { <# .Synopsis Generates a new OID for certificate templates. .DESCRIPTION This function generates a new OID (Object Identifier) for certificate templates within Active Directory. .EXAMPLE $result = New-TemplateOID -Server "DC01" -ConfigNC "DC=example,DC=com" $result.TemplateOID # Output: ForestBaseOID.12345678.87654321 $result.TemplateName # Output: 87654321.0123456789ABCDEF0123456789ABCDEF .PARAMETER Server FQDN of a Domain Controller. .PARAMETER ConfigNC Configuration Naming Context of the domain. .NOTES Used Functions: Name | Module -------------------------------|-------------------------- Get-RandomHex | EguibarIT Test-IsUniqueOID | EguibarIT Get-FunctionDisplay | EguibarIT Get-Random | Microsoft.Powershell.Utility New-ADObject | ActiveDirectory .NOTES Version: 1.4 DateModified: 08/Oct/2021 LasModifiedBy: Vicente Rodriguez Eguibar vicente@eguibar.com Eguibar Information Technology S.L. http://www.eguibarit.com #> [CmdletBinding(ConfirmImpact = 'Low')] [OutputType([System.Collections.Hashtable])] Param( [Parameter(Mandatory = $true, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, ValueFromRemainingArguments = $False, HelpMessage = 'FQDN of a Domain Controller.', Position = 0)] [ValidateNotNullOrEmpty()] [System.String] $Server, [Parameter(Mandatory = $true, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, ValueFromRemainingArguments = $False, HelpMessage = 'Configuration Namin Context of the domain.', Position = 1)] [ValidateNotNullOrEmpty()] [System.String] $ConfigNC ) Begin { Write-Verbose -Message '|=> ************************************************************************ <=|' Write-Verbose -Message (Get-Date).ToShortDateString() Write-Verbose -Message (' Starting: {0}' -f $MyInvocation.Mycommand) Write-Verbose -Message ('Parameters used by the function... {0}' -f (Get-FunctionDisplay $PsBoundParameters -Verbose:$False)) ############################## # Variables Definition } # End BEGIN Process { <# OID CN/Name [10000000-99999999].[32 hex characters] OID msPKI-Cert-Template-OID [Forest base OID].[1000000-99999999].[10000000-99999999] <--- second number same as first number in OID name #> do { $OID_Part_1 = Get-Random -Minimum 1000000 -Maximum 99999999 $OID_Part_2 = Get-Random -Minimum 10000000 -Maximum 99999999 $OID_Part_3 = Get-RandomHex -Length 32 $Splat = @{ Server = $Server Identity = "CN=OID,CN=Public Key Services,CN=Services,$ConfigNC" Properties = 'msPKI-Cert-Template-OID' } $OID_Forest = Get-ADObject @splat | Select-Object -ExpandProperty msPKI-Cert-Template-OID $msPKICertTemplateOID = '{0}.{1}.{2}' -f $OID_Forest, $OID_Part_1, $OID_Part_2 $Name = '{0}.{1}' -f $OID_Part_2, $OID_Part_3 } until (Test-IsUniqueOID -cn $Name -TemplateOID $msPKICertTemplateOID -Server $Server -ConfigNC $ConfigNC) } # End PROCESS Section End { $result = @{ TemplateOID = $msPKICertTemplateOID TemplateName = $Name } Write-Verbose -Message "Function $($MyInvocation.InvocationName) adding members to the group." Write-Verbose -Message '' Write-Verbose -Message '--------------------------------------------------------------------------------' Write-Verbose -Message '' Return $result } # End END Section } # End Function New-TemplateOID |