Skip to content
This repository has been archived by the owner on Jan 21, 2021. It is now read-only.

Get-DomainSearcher : A parameter cannot be found that matches parameter name 'Properties' #341

Open
sogewasp opened this issue Jan 29, 2020 · 0 comments
Open

Get-DomainSearcher : A parameter cannot be found that matches parameter name 'Properties' #341

sogewasp opened this issue Jan 29, 2020 · 0 comments

Comments

@sogewasp
Copy link

sogewasp commented Jan 29, 2020
edited
Loading

I'm trying to add a domain user DCSync rights with the command Add-ObjectAcl, but somehow I keep getting errors.
I've connected to remote domain (which my machine isn't part of) with the command:

C:\Users\user> runas /net /user:domain.local\username powershell.exe
Enter the password for domain.local\username:
Attempring to start powershell.exe ad user "domain.local\username" ...

Then I followed the examples (help ):

PS C:\Users\user> hepl Add-DomainObjectAcl -examples
...
    -------------------------- EXAMPLE 2 --------------------------

    PS C:\>$Harmj0ySid = Get-DomainUser harmj0y | Select-Object -ExpandProperty objectsid

    Get-DomainObjectACL testuser -ResolveGUIDs | Where-Object {$_.securityidentifier -eq $Harmj0ySid}

    [no results returned]

    $SecPassword = ConvertTo-SecureString 'Password123!'-AsPlainText -Force
    $Cred = New-Object System.Management.Automation.PSCredential('TESTLAB\dfm.a', $SecPassword)
    Add-DomainObjectAcl -TargetIdentity testuser -PrincipalIdentity harmj0y -Rights ResetPassword -Credential $Cred
    -Verbose

But I get this error:

PS C:\Windows\system32>  Get-DomainUser -Domain htb.local username | Select-Object -ExpandProperty  objectsid
...
PS C:\Windows\system32> Get-DomainObjectAcl -Domain domain.local  -ResolveGUIDs username | Where-Object {$_.securityidentifier -eq $DomainUserID}
Get-DomainSearcher : A parameter cannot be found that matches parameter name 'Properties'.
At C:\Users\user\Documents\WindowsPowerShell\Modules\Empire-master\data\module_source\situational
_awareness\network\powerview.ps1:8125 char:40
+         $Searcher = Get-DomainSearcher @SearcherArguments
+                                        ~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : InvalidArgument: (:) [Get-DomainSearcher], ParameterBindingException
    + FullyQualifiedErrorId : NamedParameterNotFound,Get-DomainSearcher

Get-DomainSearcher : A parameter cannot be found that matches parameter name 'SearchBase'.
At C:\Users\user\Documents\WindowsPowerShell\Modules\Empire-master\data\module_source\situational_awareness\network\powerview.ps1:5906 char:42
+     $SchemaSearcher = Get-DomainSearcher @SearcherArguments
+                                          ~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : InvalidArgument: (:) [Get-DomainSearcher], ParameterBindingException
    + FullyQualifiedErrorId : NamedParameterNotFound,Get-DomainSearcher

Get-DomainSearcher : A parameter cannot be found that matches parameter name 'SearchBase'.
At C:\Users\user\Documents\WindowsPowerShell\Modules\Empire-master\data\module_source\situational
_awareness\network\powerview.ps1:5929 char:42
+     $RightsSearcher = Get-DomainSearcher @SearcherArguments
+                                          ~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : InvalidArgument: (:) [Get-DomainSearcher], ParameterBindingException
    + FullyQualifiedErrorId : NamedParameterNotFound,Get-DomainSearcher

Same happens when I type the command:

PS C:\Windows\system32> Add-ObjectAcl -credential $cred -targetidentity targetuser -PrincipalIdentity principaluser -rights dcsync -PrincipalDomain domain.local -verbose
Get-DomainSearcher : A parameter cannot be found that matches parameter name 'Properties'.
At C:\Users\user\Documents\WindowsPowerShell\Modules\Empire-master\data\module_source\situational
_awareness\network\powerview.ps1:6570 char:46
+         $ObjectSearcher = Get-DomainSearcher @SearcherArguments
+                                              ~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : InvalidArgument: (:) [Get-DomainSearcher], ParameterBindingException
    + FullyQualifiedErrorId : NamedParameterNotFound,Get-DomainSearcher

Unable to resolve principal: principaluser
At C:\Users\user\Documents\WindowsPowerShell\Modules\Empire-master\data\module_source\situational
_awareness\network\powerview.ps1:8516 char:13
+             throw "Unable to resolve principal: $PrincipalIdentity"
+             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : OperationStopped: (Unable to resol...l: principaluser:String) [], Runti
   meException
    + FullyQualifiedErrorId : Unable to resolve principal: principaluser

Working on Windows 10 virtual machine for what matters...
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@sogewasp