Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Severity Level: Error
Description
The use of the AsPlainText parameter with the ConvertTo-SecureString command can expose secure
information.
How
Use a standard encrypted variable to perform any SecureString conversions.
Recommendations
If you do need an ability to retrieve the password from somewhere without prompting the user, consider using the SecretStore module from the PowerShell Gallery.
Example
Wrong
$UserInput = Read-Host 'Please enter your secure code'
$EncryptedInput = ConvertTo-SecureString -String $UserInput -AsPlainText -Force
Correct
$SecureUserInput = Read-Host 'Please enter your secure code' -AsSecureString