Edit

Share via

Get-PfxCertificate

Module:
Microsoft.PowerShell.Security Module

Gets information about PFX certificate files on the computer.

Syntax

ByPath (Default) 

Get-PfxCertificate
    [-FilePath] <String[]>
    [-Password <SecureString>]
    [-NoPromptForPassword]
    [<CommonParameters>]

ByLiteralPath 

Get-PfxCertificate
    -LiteralPath <String[]>
    [-Password <SecureString>]
    [-NoPromptForPassword]
    [<CommonParameters>]

Description

The Get-PfxCertificate cmdlet gets an object representing each specified PFX certificate file. A PFX file includes both the certificate and a private key.

Examples

Example 1: Get a PFX certificate

Get-PfxCertificate -FilePath "C:\windows\system32\Test.pfx"

Password: ******
Signer Certificate:      David Chew (Self Certificate)
Time Certificate:
Time Stamp:
Path:                    C:\windows\system32\zap.pfx

This command gets information about the Test.pfx certificate file on the system.

Example 2: Get a PFX certificate from a remote computer

Invoke-Command -ComputerName "Server01" -ScriptBlock {Get-PfxCertificate -FilePath "C:\Text\TestNoPassword.pfx"} -Authentication CredSSP

This command gets a PFX certificate file from the Server01 remote computer. It uses Invoke-Command to run a Get-PfxCertificate command remotely.

When the PFX certificate file is not password-protected, the value of the Authentication parameter of Invoke-Command must be CredSSP.

Parameters

-FilePath

Specifies the full path to the PFX file of the secured file. If you specify a value for this parameter, it is not necessary to type -FilePath at the command line.

Parameter properties

Type:

String[]

Default value:None
Supports wildcards:False
DontShow:False

Parameter sets

ByPath
Position:0
Mandatory:True
Value from pipeline:True
Value from pipeline by property name:True
Value from remaining arguments:False

-LiteralPath

The full path to the PFX file of the secured file. Unlike FilePath, the value of the LiteralPath parameter is used exactly as it is typed. No characters are interpreted as wildcards. If the path includes escape characters, enclose it in single quotation marks. Single quotation marks tell PowerShell not to interpret any characters as escape sequences.

Parameter properties

Type:

String[]

Default value:None
Supports wildcards:False
DontShow:False
Aliases:PSPath, LP

Parameter sets

ByLiteralPath
Position:Named
Mandatory:True
Value from pipeline:False
Value from pipeline by property name:True
Value from remaining arguments:False

-NoPromptForPassword

Suppresses prompting for a password.

Parameter properties

Type:SwitchParameter
Default value:None
Supports wildcards:False
DontShow:False

Parameter sets

(All)
Position:Named
Mandatory:False
Value from pipeline:False
Value from pipeline by property name:False
Value from remaining arguments:False

-Password

Specifies a password required to access a .pfx certificate file.

This parameter was introduced in PowerShell 6.1.

Note

For more information about SecureString data protection, see How secure is SecureString?.

Parameter properties

Type:SecureString
Default value:None
Supports wildcards:False
DontShow:False

Parameter sets

(All)
Position:Named
Mandatory:False
Value from pipeline:False
Value from pipeline by property name:False
Value from remaining arguments:False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutBuffer, -OutVariable, -PipelineVariable, -ProgressAction, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

Inputs

String

You can pipe a string that contains a file path to Get-PfxCertificate.

Outputs

X509Certificate2

Get-PfxCertificate returns an object for each certificate that it gets.

Notes

When using the Invoke-Command cmdlet to run a Get-PfxCertificate command remotely, and the PFX certificate file is not password protected, the value of the Authentication parameter of Invoke-Command must be CredSSP.