Help with creating script

Currently we are using the google authenticator with our F5 implementation. We provide our users with a shared secret key and store the same key in our Active Directory for later reference. So basically we add a sample key like this to one of our AD fields:

GVUEYVDJMNSFIMD2

So basically i have a ton of users with this setup in their AD fields. One of the issues i have with our setup is the fact the key we store in Active Directory is too visible to others in my organization. So a friend point this link to me and I think it will fix my concerns:

https://devcentral.f5.com/questions/apm-active-directory-authention-with-google-auth

So we add the following code to the google authenticator generator page:

append ga_secret_http_resp "key (secret): $secret_b32\n    \n  "
set key "3658F2C8C5C2017839B2B1761F713F8B"
set iv "DC4F6A9A1C6D12C15FEC43179660C78B"
set enc_ga_secret [b64encode [CRYPTO::encrypt -alg aes-128-cbc -keyhex $key -ivhex $iv $secret_b32]]
append ga_secret_http_resp "encrypted secret: $enc_ga_secret\n"
append ga_secret_http_resp "\n"

Users are provide the key GVUEYVDJMNSFIMD2 and we now add this encrypted key 3qqb/Yr1gSblF99F8/XkgJVFG5vs9KG5OwflwLHkU9I= to AD. The F5 can then decrypt the key and it works great.

However, I now need to create a script that will take the remain shared key we have in everybody account and encrypt it. I was hoping someone knew a little power shell or some other scripting language that could help me out of this jam!