Event banner

Microsoft Technical Takeoff: Windows + Intune

Event Ended

Monday, Mar 03, 2025, 07:00 AM PST

Online

Event details

Welcome to the third installment of the Microsoft Technical Takeoff for Windows and Microsoft Intune! This free, virtual skilling event offers prescriptive, technical deep dives and panel-based discu...

Visual day-by-ay, hour-by-hour representation of the agenda which is also listed below on this page.

Heather_Poulsen

Updated Mar 06, 2025

Microsoft Technical Takeoff 2025 - Session Grid.pdf102 KB

Azure Virtual Desktop

Community Manager

Feb 24, 2025

Yes, all sessions will be recorded and available to view immediately after the live airing. We will also support Q&A in the Comments section of each page throughout the week so make sure to post your questions for the product teams as you catch up on demand.

Nicholas Plant

Iron Contributor

Feb 28, 2025

Here is a question that I hope can be addressed. In Microsoft Dataverse equipping a Dataverse plugin with an Azure managed identity is now supported. However, in order to deploy a managed identity equipped plugin to production it is necessary to sign the code with a valid certificate. This is new because prior to managed identities being possible for Dataverse plugins a self signed certificate would suffice. That is no longer the case. We are about to deploy Cloud PKI for device certification and it appears from looking at the certificate templates that code signing with a cloud pki based certificate is, or is anticipated to be, available. However, I have not been able to find any documentation on it. I would very much like to be able to use cloud pki for all our certificate based requirements and to sign the Dataverse plugins in particular. A you tube video on how to do code signing with a cloud pki cert would be immensely valuable.

Daniel Bleyer
Copper Contributor
Feb 28, 2025
Hi Nicholas,

Thank you for your detailed question about using Cloud PKI for signing Dataverse plugins that use Azure managed identities. I understand your situation - you need a valid certificate (not self-signed) for production deployment, and you're hoping to leverage Cloud PKI for this purpose.
Based on my knowledge , Microsoft has indeed updated the requirements for Dataverse plugins with managed identities to require properly signed certificates for production, but specific documentation on using Cloud PKI for this purpose is somewhat limited.
Here's what I can share:
Microsoft Cloud PKI does include code signing certificate templates as part of its service offerings, but the implementation specifics for Dataverse plugins aren't extensively documented.
The general process would involve:
Requesting a code signing certificate from your Cloud PKI infrastructure
Using that certificate to sign your plugin assemblies
Including the signed assemblies in your Dataverse solution package
For your specific need, I'd recommend:
Check if your Cloud PKI implementation has the "Code Signing" certificate template enabled
Request a certificate with the appropriate code signing enhanced key usage (EKU)
Use SignTool or similar utilities to sign your plugin assemblies with the certificate
While I don't have links to YouTube videos specifically for Cloud PKI code signing with Dataverse plugins, you might want to look at the Microsoft documentation for Power Platform's certificate requirements and Cloud PKI implementation details separately, then combine that knowledge.
Have you already attempted to request a code signing certificate from your Cloud PKI implementation? That would be the first step in determining if this approach will work for your needs.

Date and Time

Mar 3, 2025 7:00 AM - Mar 6, 2025 12:00 PM PST