Functions/Set-RemoteDesktopCert.ps1
|
function Set-RemoteDesktopCert { <# .NOTES Author: Skyler Hart Created: 2021-11-18 22:53:02 Last Edit: 2021-11-18 22:53:02 Keywords: Requires: -RunAsAdministrator .LINK https://wanderingstag.github.io #> [CmdletBinding()] [Alias('Set-RDPCert')] param( [Parameter( HelpMessage = "Enter the thumbprint of the certificate.", Mandatory=$true )] [Alias('Cert')] [string]$Thumbprint ) $currentPrincipal = New-Object Security.Principal.WindowsPrincipal([Security.Principal.WindowsIdentity]::GetCurrent()) if ($currentPrincipal.IsInRole([Security.Principal.WindowsBuiltInRole]::Administrator)) { $tsgs = Get-WmiObject -Class Win32_TSGeneralSetting -Namespace root\cimV2\terminalservices -Filter "TerminalName='RDP-tcp'" Set-WmiInstance -Path $tsgs.__path -argument @{SSLCertificateSHA1Hash="$Thumbprint"} #DevSkim: ignore DS126858 } else {Write-Error "Must be ran as administrator."} } |