I was recently asked as to how to figure out if the private key associated with a certificate is exportable or not. Typically the following code should work: >$cert = (dir cert:\localmachine\my)[0] >$cert.PrivateKey.CspKeyContainerInfo.Exportable...

Microsoft's Certificate Authority management interface as mentioned in http://msdn.microsoft.com/en-us/library/aa383234(VS.85).aspx is implemented in certadm.dll. certadm.dll does not ship by default on client system and is part of admin pack (or called...

Alright, so today someone tried to contact me with an interesting email about exporting the certificate user store to PFX using powershell. Below is the code that was contained in the email: $cert = (dir cert:\currentuser\my)[0] $type = [System...

This is a short post as someone asked me to give a sample for importing a pfx into user store using powershell: $pfxcert = new-object system.security.cryptography.x509certificates.x509certificate2 $pfxcert.Import("pfxtest.pfx", "mypwd", [System...

In this article I will explore using the certenroll interfaces to create certificates for testing/local usage. To scope the discussion, we would look at various options exposed via makecert.exe tool ( http://msdn.microsoft.com/en-us/library/aa386968(VS...

In my previous post I used the CMS type to open a PKCS7. Apparently X509Certificate2Collection Import method can also be used to open up a PKCS7. This would be far more simpler then using CMS. Additionally, you might be asked to add the certificates...

Recently I was asked how to extract the certificates within a PKCS7 (p7b) files using powershell. After a little research the following seems to work fine: [reflection.assembly]::LoadWithPartialName("System.Security") $data = [System.IO.File]::ReadAllBytes...