Skip to content

gdevin/Get-ADtokenGroups

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
Images
Images
 
 
.gitattributes
.gitattributes
 
 
Get-ADtokenGroups_Http_server.ps1
Get-ADtokenGroups_Http_server.ps1
 
 
README.md
README.md
 
 

Repository files navigation

Get-ADtokenGroups

This is a PowerShell script to create an HTTP.sys listener that returns a list of Active Directory tokenGroups for a user.

Installation Steps

  • Configure HTTP.sys with HttpSysManager. This can be done with PowerShell but HttpSysManager (link below) is easier. Granting ‘Everyone’ register and ‘SYSTEM’ register and delegate is the simplest way to get started.

  • Open port in windows firewall. This needs to be the same port configure above.

  • Create schedule task to run the ‘Get-ADtokenGroups_Http_server.ps1’ script. The script needs to be run with user credentials that have been granted register and delegate permissions.

  • Ensure that whatever user, or computer account if using SYSTEM, has permission to retrieve tokenGroups from Active Directory.

Notes

HTTP.sys can be configured with PowerShell commands but it is easier to use HttpSysManager from the link below.
https://www.codeproject.com/Articles/437733/Demystify-http-sys-with-HttpSysManager

HttpSysManager1

HttpSysManager2

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages