Autopilot - hybrid-join - domain account #1
Description
Hi
Thanx for a great session at BH in London.
I was trying to reproduce the stealing of the domain join account for hybrid-join autopilot case but I can't get that to work ?
You wrote that:
Then, you can provide the hardware hash in -H parameter in checkin command.
but you are referring to the check_compliant function in the script
$ python3 pytune.py check_compliant -o Windows -c Windows_pytune.pfx -u testuser@*******.onmicrosoft.com -p *********** -H $HWHASH
Then, after the initial check-in with the hardware hash, the next check-in will give you the domain credential.
I am getting data back from the checkin function but not any domain join information when I use
python3 pytune.py checkin -o $platform -d $devicename -c $devicename".pfx" -m $devicename"_mdm.pfx" -u $u -p $p -H $hwhash
What am I missing or is this perhaps disclosed from Microsoft ?
I am using
devicename=fakedevice
platform=Windows
u=upn of a user
p=user password
hwhash=xxxx
where the hwhash is extracted with PS below
$devDetail = (Get-CimInstance -Namespace root/cimv2/mdm/dmmap -Class MDM_DevDetail_Ext01 -Filter "InstanceID='Ext' AND ParentID='./DevDetail'")
$devDetail.DeviceHardwareData