This topic contains 6 replies, has 5 voices, and was last updated by
February 1, 2017 at 6:46 pm #63259ParticipantTopics: 1Replies: 1Points: 0Rank: Member
Does anyone had an idea how to do this:
I'm trying to build an on-premises HTTPS DSC Pull Server on a server which is managed by Azure DSC.
Step-1: Within my config I'm able to generate an SSL certificate from the on-premises CA. But now I want to use this particular certificate for the SSL-binding of the Pull server.
Step-2: Within the xDscWebService resource you have to supply an CertificateThumbPrint.
How can I use retrieve and use the thumbprint of the certificate from Step-1 in the same config? Just $thumbprint = (Get-ChildItem CERT:\..etc) doesn't do the trick...
February 2, 2017 at 5:39 pm #63390ParticipantTopics: 12Replies: 68Points: 9Rank: Member
It would take either a custom resource or a script resource that gets the cert thumbprint and does the steps that xDscWebService would handle.
February 3, 2017 at 7:36 pm #63523ParticipantTopics: 2Replies: 29Points: 62Rank: Member
You could pass in thumbprint as a parameter with a param block.
Then on the line where you compile the mof,
Configname -path .\ -thumbprint (get-childitem Cert:\...etc)
February 3, 2017 at 7:38 pm #63525ParticipantTopics: 2Replies: 29Points: 62Rank: Member
Oh wait, you say you're generating the certificate within the config?? Using a parameter probably isn't the answer in that case.
February 3, 2017 at 7:46 pm #63526ParticipantTopics: 0Replies: 1Points: 30Rank: Member
Hi Sven, I have done this in my test environment using the below method.
$cert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2 $cert.Import('c:\publicKeys\nameofcertfile.cer')
You can then use $cert.thumbprint to get the thumbprint.
I used this article to help me: https://social.technet.microsoft.com/Forums/scriptcenter/en-US/969bfa58-a479-4b07-8c3b-4e57121351da/powershell-pulling-thumbprint-from-certificate-cer?forum=ITCG
First post, hope the formatting works correctly.
February 6, 2017 at 9:46 am #63628ParticipantTopics: 1Replies: 1Points: 0Rank: Member
Thank you all for your replies up till now!
I'm going to check things out later this week and will keep you up to date!
June 12, 2017 at 11:22 am #72583ParticipantTopics: 0Replies: 2Points: 22Rank: Member
Any update on this?
The topic ‘Generate certificate thumbprint within config’ is closed to new replies.