Security, Compliance, and Identity Blog

Options
9,514
Shilpa_Bothra on Jul 28 2022 11:47 AM
3,500
Anna_Chiang on Jul 08 2022 01:45 PM
4,090
Robin_Baldwin on Jun 09 2022 11:16 AM
14.9K
Sathya_Narayanan on Jun 07 2022 10:00 AM
13.3K
Shilpa_Bothra on Jun 02 2022 10:00 AM
15.3K
snehillnu on May 04 2022 10:00 AM
14.4K
Shilpa_Bothra on Apr 19 2022 10:00 AM
12.5K
Jon Nordström on Apr 11 2022 12:57 PM
10.2K
Danijel Klaric on Dec 08 2021 08:55 AM
6,992
Mavi Etzyon-Grizer on Dec 07 2021 08:23 AM
114K
Walid_Elmorsy on Nov 15 2021 09:00 AM
10K
EricEOuellet on Nov 02 2021 08:00 AM
29.7K
EricEOuellet on Nov 02 2021 08:00 AM
135K
Sarahzin_Shane on Oct 28 2021 11:00 AM
8,046
EricEOuellet on Sep 17 2021 09:00 AM
7,830
PavanKB on Sep 16 2021 08:30 AM
17.1K
PavelKratky on Sep 13 2021 09:20 AM
7,116
PavanKB on Aug 23 2021 08:00 AM
7,203
Tim_Addison on Aug 11 2021 09:34 AM
10.4K
Arvind_Chandaka on Jun 25 2021 12:27 PM
18.9K
EricEOuellet on May 27 2021 04:09 PM
14.6K
Nir Hendler on May 11 2021 11:02 AM
2,704
Sean McNeill on Apr 27 2021 10:00 AM
3,161
Robin_Baldwin on Apr 21 2021 09:00 AM
4,623
Mavi Etzyon-Grizer on Apr 10 2021 09:00 AM
15.4K
EricEOuellet on Apr 02 2021 02:00 PM
5,204
ChristopherCampbell on Mar 24 2021 09:00 AM
2,390
aletheap on Mar 23 2021 09:00 AM

Latest Comments

Hi, we are currently signing with the signtool solution. Haven’t tried the powershell module.
0 Likes
@JohanVanEekelen How do you sign files with the ps module?I am not able to do it with the Invoke-TrustedSigning @params. i get a signtool errorcode.Have you done something special?
0 Likes
Hi @mickiwForce , thanks for your response, the actual issue is not the signing itself, scripts can be signed eith trusted signing. The issue is that to enforce only signed powershell scripts at the endpoints the publisher certificate needs to be in the trusted publisher store ant the trusted publis...
0 Likes
@JohanVanEekelen Are you able to sign files with the powershell module only?Something like this?$params = @{Endpoint = "https://wus2.codesigning.azure.net/"CodeSigningAccountName = "my-account"CertificateProfileName = "my-cert-profile"FilesFolder = "bin/Release/net6.0-windows10.0.19041.0/win10-x64/"...
0 Likes
Currently PowerShell script signing with the service is very difficult due to the short lived certificates (and the fact that these need to be updated in the trusted publishers store every 3 days). There is a nice initiative posted here which maybe can be investigated https://github.com/PowerShell/P...
0 Likes