Import-PfxCertificate
Imports certificates and private keys from a Personal Information Exchange (PFX) file to the destination store.
Syntax
Import-PfxCertificate
[-Exportable]
[-Password <SecureString>]
[[-CertStoreLocation] <String>]
[-FilePath] <String>
[-WhatIf]
[-Confirm]
[<CommonParameters>] Description
The Import-PfxCertificate cmdlet imports certificates and private keys from a PFX file to the
destination store. Certificates with and without private keys in the PFX file are imported, along
with any external properties that are present.
Delegation may be required when using this cmdlet with Windows PowerShell remoting and changing user configuration.
Examples
EXAMPLE 1
$mypwd = Get-Credential -UserName 'Enter password below' -Message 'Enter password below'
$params = @{
FilePath = 'C:\mypfx.pfx'
CertStoreLocation = 'Cert:\LocalMachine\My'
Password = $mypwd.Password
}
Import-PfxCertificate @paramsThis example imports the PFX file mypfx.pfx with a private, non-exportable key into the My store
for the machine account.
EXAMPLE 2
Get-ChildItem -Path C:\mypfx.pfx |
Import-PfxCertificate -CertStoreLocation Cert:\CurrentUser\My -ExportableThis example imports the PFX file mypfx.pfx with a private, exportable key into the My store for
the current user. The Password parameter is not required since this PFX file is not password
protected.
EXAMPLE 3
Set-Location -Path Cert:\LocalMachine\My
Import-PfxCertificate -FilePath C:\mypfx.pfxThis example imports the PFX file mypfx.pfx into the My store for the machine account. The
Password parameter is not required since this PFX file is protected using the domain account of
this machine. This requires a Windows Server 2012 or later domain controller.
Parameters
-CertStoreLocation
Specifies the path of the store to which certificates will be imported. If this parameter is not specified, then the current path is used as the destination store.
| Type: | String |
| Position: | 1 |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Confirm
Prompts you for confirmation before running the cmdlet.
| Type: | SwitchParameter |
| Aliases: | cf |
| Position: | Named |
| Default value: | False |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Exportable
Specifies whether the imported private key can be exported. If this parameter is not specified, then the private key cannot be exported.
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-FilePath
Specifies the path for the PFX file.
| Type: | String |
| Aliases: | FullName |
| Position: | 0 |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-Password
Specifies the password for the imported PFX file in the form of a secure string.
| Type: | System.SecureString |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-WhatIf
Shows what would happen if the cmdlet runs. The cmdlet is not run.
| Type: | SwitchParameter |
| Aliases: | wi |
| Position: | Named |
| Default value: | False |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Inputs
A String containing the path to the PFX file.
Outputs
The imported X509Certificate2 object contained in the PFX file that is associated with private keys.