Reputation: 6144
How to search for Server Exchange or Server Authentication type certificates installed on host computer using PowerShell?
I'm trying to choose a certificate from the computer certificate store LocalMachine\My that serves for Server Exchange or Authentication (I'm unsure regarding the exact nomenclature) purposes. I know there are filters to return only certificates of a certain type, as such:
PS> Get-ChildItem Cert:\LocalMachine\My -codesigning
and what I want is to do something like:
PS> Get-ChildItem Cert:\LocalMachine\My -exchange
Which fails in PowerShell.
If such a filter keyword doesn't exists, can some venture a way to do it, or at least how to go about it?
Upvotes: 1
Views: 1412
Answers (2)
Reputation: 52609
To get a list of certs with server authentication you can filter by the enhanced key usage properties:
dir cert:\localmachine\my | ? {
$_.Extensions | % {
$_.EnhancedKeyUsages | ? {
$_.FriendlyName -eq "Server Authentication"}}}
Upvotes: 1
Reputation: 60918
You can read each certificate properties in this way:
Get-ChildItem Cert:\LocalMachine\My | fl *
then you can filter by property, in this case filtering by name of issuer:
Get-ChildItem Cert:\LocalMachine\My | where-object { $_.issuer -match "servername" }
Upvotes: 0
Related Questions
- How to get all certificates with powershell?
- PowerShell - X509Certificates.X509Store get all certificates?
- Wildcard certificate usage search with Powershell or Command prompt
- Get Certificate Intended Purposes
- Get certificates information using powershell
- Powershell script to get the certificates that are not in use
- How can I use PowerShell to find a website's certificate?
- Searching for wildcard certificate in local store?
- Powershell Select-object from cert store
- Determine if a certificate is installed using CN (via powershell 2.0)?