Introduction One of the things I like to do when ever I install a new server is to enable an HTTPS/SSL WS-Management Listener on it so that I can disable the more insecure HTTP WS-Management listener. For more information on WS-Management Listeners see this MSDN article.
There are many benefits to using a secure HTTPS/SSL WS-Management Listener:
Security - the communication channel between client and server is encrypted using SSL.
I know this is a bit of a non event, but anyone notice the new PowerShell icon in Windows 10 insider build 10547?
I wonder if there are any other PowerShell changes in this build?
Continuing on from yesterday, the goal of this series is show how it is possible to install a two-tier Active Directory Certificate Services environment using only Desired State Configuration. In Part 1, I covered the basic DSC setup and requirements, the AllNodes hash table and the first part of the Root CA configuration script.
Other Parts in this Series Installing a Two-Tier PKI using nothing but Desired State Configuration - Part 1
I am a firm believer in the concept of Infrastructure as Code. I do think technologies such as Chef and Windows PowerShell Desired State Configuration (DSC) will eventually replace ‘clickety-click’ administration in medium to large environments, and even some smaller sites. If you’re not familiar with these technologies or concepts I’d strongly recommend you take a look at the above links.
Note: This post is going to be quite long and it does assume you have a basic understanding of Desired State Configuration (DSC) and Windows Active Directory Certificate Services (AD CS).
I just spent the last hour bashing my head against my keyboard trying to figure out what I had done wrong in one of my scripts.
It turns out when you are inside a Switch construct, the variable $Switch value is redefined (presumably by the switch construct itself) as an empty variable of type System.Collections.IEnumerator. The value is set to $null. This won’t be a problem if you’re not using a variable with the name $Switch.
