堆栈内存溢出
  简体   繁体   English

Powershell IIS7 Snap in将SSL证书分配给https绑定

[英]Powershell IIS7 Snap in Assign SSL certificate to https binding

 原文  2010-04-13 11:08:33       iis-7/ powershell/ web/ ssl-certificate

问题描述

As part of our automated build procedure we are trashing and reconstructing our IIS site with powershell scripts. 作为我们自动构建过程的一部分,我们使用PowerShell脚本来破坏和重建我们的IIS站点。

Once i have created the AppPool and the website complete with binding information I want to set the SSL certificate for the https binding. 一旦我创建了AppPool并且网站完成了绑定信息,我想为https绑定设置SSL证书。 I can't find any concrete examples onl;ine anywhere that demonstrate this. 我找不到任何具体的例子,在任何地方都可以证明这一点。

Any ideas? 有任何想法吗?

Looking for a benevolent powershell god... 寻找一个仁慈的贝壳神......

4 个解决方案

解决方案1
 19  2013-01-28 12:14:43

You can merge previous examples with creation of an https binding in a web site. 您可以将先前的示例与在网站中创建https绑定合并。 

import-module webadministration
$computerName = $Env:Computername
$domainName = $Env:UserDnsDomain
New-WebBinding -Name "MyWebSite" -IP "*" -Port 443 -Protocol https
Get-ChildItem cert:\LocalMachine\My | where { $_.Subject -match "CN\=$Computername\.$DomainName" } | select -First 1 | New-Item IIS:\SslBindings\0.0.0.0!443

解决方案2
 8 已采纳  2010-04-14 08:05:10

Here is how to do it simply: 以下是如何做到这一点:

First identify thecertificate that you want to assign and obtain it's thumbprint 首先确定要分配的证书并获取其指纹

eg Your certificate might be in cert:\\LocalMachine\\Root 例如,您的证书可能位于cert:\\ LocalMachine \\ Root中

You can obtain the thumbprint with the following: 您可以使用以下内容获取指纹: 

$thumb = (Get-ChildItem cert:\LocalMachine\Root | where-object { $_.Subject -like "YOUR STRING HERE*" } | Select-Object -First 1).Thumbprint

<<< Now one can assign the certificate to an ip address and port comme ci >>> <<<现在可以将证书分配给IP地址和端口comme ci >>> 

$IPAddress = 101.100.1.90

$port = 443

Push-Location IIS:\SslBindings

Get-Item cert:\LocalMachine\Root\$thumb | New-Item $IPAddress!$port

Pop-Location

Hope this is of help to anyone 希望这对任何人都有帮助

解决方案3
 2  2011-04-29 19:59:55

You can make the script simpler like this: 您可以使脚本更简单: 

Get-ChildItem cert:\LocalMachine\Root | where { $_.Subject -like "YOUR STRING HERE*" } | select -First 1 | New-Item IIS:\SslBindings\0.0.0.0!443

Use 0.0.0.0 to target all hosted IP's (equivalent to "*" in IIS Manager) or replace it with a specific IP if needed. 使用0.0.0.0定位所有托管IP(在IIS管理器中等效于“*”),或者根据需要将其替换为特定IP。

解决方案4
 0  2010-04-13 13:20:08

I've found an example here on how one can assign the certificate. 我在这里找到了一个如何分配证书的例子。

http://learn.iis.net/page.aspx/491/powershell-snap-in-configuring-ssl-with-the-iis-powershell-snap-in/ http://learn.iis.net/page.aspx/491/powershell-snap-in-configuring-ssl-with-the-iis-powershell-snap-in/

However, it doesn't seem very elegant having to hard code the certificate thumbprint ... so if any one knows of a better method, I'd be glad to hear. 但是,硬编码证书指纹似乎并不优雅......所以如果有人知道更好的方法,我会很高兴听到。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 IIS7:如何将 SSL 证书绑定到 Https 主机头? - IIS7: How to bind SSL Certificate to Https Host Header? 如何从命令提示符向 IIS7 站点分配 SSL 证书 - How to assign a SSL Certificate to IIS7 Site from Command Prompt 如何续订iis7自签名证书 - How to renew an iis7 self signed ssl certificate Powershell - 使用共享证书添加SSL绑定 - Powershell - Add SSL binding using shared certificate IIS7 HTTPS 301重定向 - IIS7 HTTPS 301 redirect 证书信任列表和IIS7 - Certificate Trust Lists and IIS7 如何从C#代码或在运行IIS的服务器上使用Powershell生成IIS7 CSR(用于SSL) - How to generate IIS7 CSR (for SSL) from C# code or using Powershell on server which IIS is running 从powershell创建自签名的iis ssl证书 - Create self signed iis ssl certificate from powershell 如何在IIS7中使用自签名证书启用相互SSL? - How do I enable mutual SSL in IIS7 with a self-signed certificate? 使用PowerShell创建IIS7 Web应用程序,并将SSL设置为“Require” - Creating IIS7 web application using PowerShell with Require SSL set to “Require”
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM