Private/New-TemplateOID.ps1
|
Function New-TemplateOID { <# .Synopsis Generates a new OID for certificate templates. .DESCRIPTION This function generates a new OID (Object Identifier) for certificate templates within Active Directory. .EXAMPLE $result = New-TemplateOID -Server "DC01" -ConfigNC "DC=example,DC=com" $result.TemplateOID # Output: ForestBaseOID.12345678.87654321 $result.TemplateName # Output: 87654321.0123456789ABCDEF0123456789ABCDEF .PARAMETER Server FQDN of a Domain Controller. .PARAMETER ConfigNC Configuration Naming Context of the domain. .NOTES Used Functions: Name | Module -------------------------------|-------------------------- Get-RandomHex | EguibarIT Test-IsUniqueOID | EguibarIT Get-FunctionDisplay | EguibarIT Get-Random | Microsoft.Powershell.Utility New-ADObject | ActiveDirectory .NOTES Version: 1.4 DateModified: 08/Oct/2021 LasModifiedBy: Vicente Rodriguez Eguibar vicente@eguibar.com Eguibar Information Technology S.L. http://www.eguibarit.com #> [CmdletBinding(SupportsShouldProcess = $true, ConfirmImpact = 'Low')] [OutputType([System.Collections.Hashtable])] Param( [Parameter(Mandatory = $true, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, ValueFromRemainingArguments = $False, HelpMessage = 'FQDN of a Domain Controller.', Position = 0)] [ValidateNotNullOrEmpty()] [System.String] $Server, [Parameter(Mandatory = $true, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, ValueFromRemainingArguments = $False, HelpMessage = 'Configuration Naming Context of the domain.', Position = 1)] [ValidateNotNullOrEmpty()] [System.String] $ConfigNC ) Begin { $txt = ($Variables.Header -f (Get-Date).ToShortDateString(), $MyInvocation.Mycommand, (Get-FunctionDisplay -HashTable $PsBoundParameters -Verbose:$False) ) Write-Verbose -Message $txt ############################## # Module imports ############################## # Variables Definition } # End BEGIN Process { <# OID CN/Name [10000000-99999999].[32 hex characters] OID msPKI-Cert-Template-OID [Forest base OID].[1000000-99999999].[10000000-99999999] <--- second number same as first number in OID name #> do { $OID_Part_1 = Get-Random -Minimum 1000000 -Maximum 99999999 $OID_Part_2 = Get-Random -Minimum 10000000 -Maximum 99999999 $OID_Part_3 = Get-RandomHex -Length 32 $Splat = @{ Server = $Server Identity = "CN=OID,CN=Public Key Services,CN=Services,$ConfigNC" Properties = 'msPKI-Cert-Template-OID' } $OID_Forest = Get-ADObject @splat | Select-Object -ExpandProperty msPKI-Cert-Template-OID $msPKICertTemplateOID = '{0}.{1}.{2}' -f $OID_Forest, $OID_Part_1, $OID_Part_2 $Name = '{0}.{1}' -f $OID_Part_2, $OID_Part_3 } until (Test-IsUniqueOID -cn $Name -TemplateOID $msPKICertTemplateOID -Server $Server -ConfigNC $ConfigNC) } # End PROCESS Section End { $txt = ($Variables.Footer -f $MyInvocation.InvocationName, 'creating new Template OID (Private Function).' ) Write-Verbose -Message $txt $result = @{ TemplateOID = $msPKICertTemplateOID TemplateName = $Name } Return $result } # End END Section } # End Function New-TemplateOID |