zblurx/certsync

Authenticating using a CA certificate and matching private key

jsdhasfedssad opened this issue · 2 comments

Hi,

Thank you for this tool!

I am having trouble authenticating using a CA certificate and it's matching private key which I dumped from the ADCS server using Certipy beforehand. What am I doing wrong?

certsync1

Hey,

The -ca-pfx flag is used to skip the CA private key dump phase of the attack, but you need to use a valid user account in certsync to request LDAP. However, if you use -ca-pfx, you only need a standard user account, not even CA administrator.

Great. It works. Thanks.