nivleshc
nivleshc
/ ConfigureADFS_CSE Extension.json
Created
September 25, 2016 11:44
ConfigureADFS CSE Extention
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "type": "Microsoft.Compute/virtualMachines/extensions", | |
| "name": "[concat(parameters('ADFS01VMName'),'/ConfigureADFS')]", | |
| "apiVersion": "2015-05-01-preview", | |
| "location": "[resourceGroup().location]", | |
| "dependsOn": [ | |
| "[concat('Microsoft.Compute/virtualMachines/', parameters('ADFS01VMName'))]", | |
| "[concat('Microsoft.Compute/virtualMachines/', parameters('ADFS01VMName'),'/extensions/InstallADFS')]" | |
| ], | |
| "properties": { |
nivleshc
/ InstallADFS_DomainCreds.ps1
Created
September 25, 2016 12:00
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [System.Management.Automation.PSCredential]$DomainCreds = New-Object System.Management.Automation.PSCredential ("${DomainName}\$($Admincreds.UserName)", $Admincreds.Password |
nivleshc
/ InstallADFS_DscForestWait.ps1
Created
September 25, 2016 12:05
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| xWaitForADDomain DscForestWait | |
| { | |
| DomainName = $DomainName | |
| DomainUserCredential= $DomainCreds | |
| RetryCount = $RetryCount | |
| RetryIntervalSec = $RetryIntervalSec | |
| } |
nivleshc
/ InstallADFS_LocalConfigurationManager.ps1
Created
September 25, 2016 12:07
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| LocalConfigurationManager | |
| { | |
| ActionAfterReboot = 'ContinueConfiguration' | |
| ConfigurationMode = 'ApplyOnly' | |
| RebootNodeIfNeeded = $true | |
| } |
nivleshc
/ CreateNewADForest_Parameters.json
Created
September 26, 2016 11:14
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| "domainName": { | |
| "type": "string", | |
| "metadata": { | |
| "description": "The FQDN of the AD Domain created " | |
| } | |
| }, | |
| "adminUsername": { | |
| "type": "string", | |
| "metadata": { | |
| "description": "The name of the Administrator of the new VM and Domain" |
nivleshc
/ ConfigureADFS_EncryptPassword.ps1
Last active
September 27, 2016 07:29
This shows how to encrypt passwords using a key
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $AdminSecurePassword = ConvertTo-SecureString {AdminPlainTextPassword} -AsPlainText -Force | |
| ConvertFrom-SecureString $AdminSecurePassword -Key $key > adminpass.key | |
| $ADFSSecurePassword = ConvertTo-SecureString {ADFSPlainTextPassword} -AsPlainText -Force | |
| ConvertFrom-SecureString $ADFSSecurePassword -Key $key > adfspass.key |
nivleshc
/ AddToADFSFarm_read_and_decrypt_credentials.ps1
Last active
October 31, 2016 04:43
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $adfspassword = Convertto-SecureString -String (Get-Content -Path $($localpath+"adfspass.key")) -key $key | |
| $AdfsSvcCreds = New-Object System.Management.Automation.PSCredential($($DomainName+"\"+$AdfsSvcUsername), $adfspassword) |
nivleshc
/ AddToADFSFarm_InstallCertificate.ps1
Created
October 31, 2016 04:52
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #install the certificate that will be used for ADFS Service | |
| Import-PfxCertificate -Exportable -Password $adfspassword -CertStoreLocation cert:\localmachine\my -FilePath $($localpath+"adfs_certificate.pfx") | |
| #get thumbprint of certificate | |
| $cert = Get-ChildItem -Path Cert:\LocalMachine\my | ?{$_.Subject -eq "CN=fs.adfsfarm.com, OU=Free SSL, OU=Domain Control Validated"} |
nivleshc
/ AddToADFSFarm_AddADFSFarmNode.ps1
Last active
October 31, 2016 12:55
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Configure ADFS | |
| Import-Module ADFS | |
| Add-AdfsFarmNode -CertificateThumbprint $cert.thumbprint -ServiceAccountCredential $AdfsSvcCreds -PrimaryComputerName $PrimaryADFSServer |
nivleshc
/ AddToADFSFarm.ps1
Last active
August 12, 2018 06:59
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <#AddToADFSFarm.ps1 | |
| #> | |
| param ( | |
| $DomainName, | |
| $PrimaryADFSServer, | |
| $AdfsSvcUsername | |
| ) | |
| #the adfs service account password is encrypted and stored in a local folder | |
| $localpath = "C:\Program Files\WindowsPowerShell\Modules\Certificates\" |