Get-AzCodeSigningCertChain

Module:: Az.CodeSigning Module

Retrieve Azure.CodeSigning Certificate Chain

Syntax

InteractiveSubmit (Default)

Get-AzCodeSigningCertChain
    [-AccountName] <String>
    [-ProfileName] <String>
    -EndpointUrl <String>
    -MetadataFilePath <String>
    [<CommonParameters>]

Description

The Get-AzCodeSigningCertChain cmdlet retrieves Azure CodeSigning Cert Chain. Use this cmdlet to retrieve Azure CodeSigning Cert Chain. There are two sets of parameters. One set uses AccountName, ProfileName, and EndpointUrl. Another set uses MetadataFilePath.

Examples

Example 1: Retrieve a cert chain by account and profile name

Get-AzCodeSigningCertChain -AccountName 'contoso' -ProfileName 'contososigning' -EndpointUrl 'https://wus.codesigning.azure.net' -Destination 'c:\acs\certchain.der'

Thumbprint                               Subject
----------                               -------
F40042E2E5F7E8EF8189FED15519AECE4        CN=Microsoft Identity Verification Root Certificate Authority 2020, O=Microso
8E750F459DAF9A79D6370DB747AD22268        CN=Microsoft ID Verified Code Signing PCA 2021, O=Microsoft Corporation, C=US
8BC0201379A2A31BA36EDD20223865C19        CN=Microsoft ID Verified CS EOC CA 02, O=Microsoft Corporation, C=US
1248C3FB98958560D5A73A75DEF9F624B        CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=WA, C=US

This command retrieves a certificate chain that is currently in use for signing by the account and profile.

Example 2: Retrieve a cert chain using the metadata file path configuration

Get-AzCodeSigningCertChain -MetadataFilePath 'c:\cisigning\metadata_input.json' -Destination 'c:\acs\certchain.der'

Thumbprint                               Subject
----------                               -------
F40042E2E5F7E8EF8189FED15519AECE4        CN=Microsoft Identity Verification Root Certificate Authority 2020, O=Microso
8E750F459DAF9A79D6370DB747AD22268        CN=Microsoft ID Verified Code Signing PCA 2021, O=Microsoft Corporation, C=US
8BC0201379A2A31BA36EDD20223865C19        CN=Microsoft ID Verified CS EOC CA 02, O=Microsoft Corporation, C=US
1248C3FB98958560D5A73A75DEF9F624B        CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=WA, C=US

This command retrieves a certificate chain that is currently in use for signing by the metadata configuration.

Parameters

-AccountName

Specifies Azure CodeSigning AccountName used to sign CI policy.

Parameter properties

Type:	String
Default value:	None
Supports wildcards:	False
DontShow:	False

Parameter sets

ByAccountProfileNameParameterSet

Position:	1
Mandatory:	True
Value from pipeline:	False
Value from pipeline by property name:	False
Value from remaining arguments:	False

-Destination

Specifies the download cert chain file path.

Parameter properties

Type:	String
Default value:	None
Supports wildcards:	False
DontShow:	False

Parameter sets

ByAccountProfileNameParameterSet

Position:	5
Mandatory:	True
Value from pipeline:	False
Value from pipeline by property name:	False
Value from remaining arguments:	False

ByMetadataFileParameterSet

Position:	5
Mandatory:	True
Value from pipeline:	False
Value from pipeline by property name:	False
Value from remaining arguments:	False

-EndpointUrl

Specifies Azure CodeSigning Endpoint used to sign CI policy. It's an Url, format is https://xxx.codesigning.azure.net

Parameter properties

Type:	String
Default value:	None
Supports wildcards:	False
DontShow:	False

Parameter sets

ByAccountProfileNameParameterSet

Position:	3
Mandatory:	True
Value from pipeline:	False
Value from pipeline by property name:	False
Value from remaining arguments:	False

ByMetadataFileParameterSet

Position:	3
Mandatory:	True
Value from pipeline:	False
Value from pipeline by property name:	False
Value from remaining arguments:	False

-MetadataFilePath

Specifies Azure CodeSigning Metadata file path used to sign CI policy. It's a file path, and the metadata content is below. File content example: { "Endpoint": "https://xxx.codesigning.azure.net/", "CodeSigningAccountName": "acstest", "CertificateProfileName": "acstestCert1" }

Parameter properties

Type:	String
Default value:	None
Supports wildcards:	False
DontShow:	False

Parameter sets

ByMetadataFileParameterSet

Position:	1
Mandatory:	True
Value from pipeline:	False
Value from pipeline by property name:	False
Value from remaining arguments:	False

-ProfileName

Specifies Azure CodeSigning ProfileName used to sign CI policy.

Parameter properties

Type:	String
Default value:	None
Supports wildcards:	False
DontShow:	False

Parameter sets

ByAccountProfileNameParameterSet

Position:	2
Mandatory:	True
Value from pipeline:	False
Value from pipeline by property name:	False
Value from remaining arguments:	False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutBuffer, -OutVariable, -PipelineVariable, -ProgressAction, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

Share via

Get-AzCodeSigningCertChain

Syntax

InteractiveSubmit (Default)

Description

Examples

Example 1: Retrieve a cert chain by account and profile name

Example 2: Retrieve a cert chain using the metadata file path configuration

Parameters

-AccountName

Parameter properties

Parameter sets

-Destination

Parameter properties

Parameter sets

-EndpointUrl

Parameter properties

Parameter sets

-MetadataFilePath

Parameter properties

Parameter sets

-ProfileName

Parameter properties

Parameter sets

CommonParameters

Inputs

Azure CodeSigning AccountName

Azure CodeSigning Profile Name

Azure CodeSigning Signing EndpointUrl

Azure CodeSigning UnSigned CI Policy File Path

Azure CodeSigning Signed CI Policy File Path Destination

String

Outputs

Signed CI Policy file

Related Links

Feedback