Get-PfxCertificate

Gets information about .pfx certificate files on the computer.
Get-PfxCertificate [-FilePath*] <String[]> [<CommonParameters>]
Get-PfxCertificate -LiteralPath* <String[]> [<CommonParameters>]

The Get-PfxCertificate cmdlet gets an object representing each specified .pfx certificate file. A .pfx file includes both the certificate and a private key.

Parameters
-FilePath <String[]>

  • This value is required
  • Accepts pipeline input ByValue

Specifies the full path to the .pfx file of the secured file. If you specify a value for this parameter, it is not necessary to type -FilePath at the command line.

-LiteralPath <String[]>

The full path to the .pfx file of the secured file. Unlike FilePath, the value of the LiteralPath parameter is used exactly as it is typed. No characters are interpreted as wildcards. If the path includes escape characters, enclose it in single quotation marks. Single quotation marks tell Windows PowerShell not to interpret any characters as escape sequences.

<CommonParameters>

This cmdlet supports the common parameters: Verbose, Debug,ErrorAction, ErrorVariable, WarningAction, WarningVariable,OutBuffer, PipelineVariable, and OutVariable.

Inputs

System.String

You can pipe a string that contains a file path to Get-PfxCertificate.

Outputs

System.Security.Cryptography.X509Certificates.X509Certificate2

Get-PfxCertificate returns an object for each certificate that it gets.

Examples
  1. Get a .pfx certificate:
    PS C:> Get-PfxCertificate -FilePath "C:windowssystem32Test.pfx"
    Password: ******
    Signer Certificate:      David Chew (Self Certificate) Time Certificate: Time Stamp: Path:                    C:windowssystem32zap.pfx
    

    This command gets information about the Test.pfx certificate on the system.

  2. Get a .pfx certificate from a remote computer:
    PS C:> Invoke-Command -ComputerName "Server01" -ScriptBlock {Get-PfxCertificate -FilePath "C:TextTestNoPassword.pfx}" -authentication CredSSP
    

    This command gets a .pfx certificate file from the Server01 remote computer. It uses Invoke-Command to run a Get-PfxCertificate command remotely.

    When the .pfx certificate file is not password-protected, the value of the Authentication parameter of Invoke-Command must be CredSSP.

Additional Notes
 When using the Invoke-Command cmdlet to run a Get-PfxCertificate command remotely, and the .pfx certificate 
 file is not password protected, the value of the Authentication parameter of Invoke-Command must be CredSSP.
Related Links

Get-AuthenticodeSignature
Set-AuthenticodeSignature