Get-AdfsCertificate
Retrieves the certificates from AD FS.
Syntax
Get-AdfsCertificate
[[-CertificateType] <String[]>]
[<CommonParameters>] Get-AdfsCertificate
[-Thumbprint] <String[]>
[<CommonParameters>] Description
The Get-AdfsCertificate cmdlet retrieves the certificates that Active Directory Federation Services (AD FS) uses for token signing, token decrypting, card signing, and securing service communications.
Examples
Example 1: Get the token-signing certificates
PS C:\> Get-AdfsCertificate -CertificateType "Token-Signing"This command retrieves the token-signing certificates for AD FS.
Parameters
-CertificateType
Specifies the type of the certificate to retrieve. The acceptable values for this parameter are:
- Infocard-Signing
- Service-Communications
- Token-Encryption
- Token-Signing
| Type: | String[] |
| Accepted values: | Service-Communications, Token-Decrypting, Token-Signing |
| Position: | 0 |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Thumbprint
Specifies the thumbprint of the certificate to retrieve.
| Type: | String[] |
| Position: | 0 |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Inputs
None
Outputs
Microsoft.IdentityServer.PowerShell.Resources.ServiceCertificate
Returns one or more ServiceCertificate objects that represent the certificate objects for AD FS.
Notes
- You can use the Get-AdfsCertificate cmdlet without any parameters to get all the certificates.