Import-Certificate Cmdlet
Parameters Output Objects Configuration Settings
The Import-Certificate cmdlet is used to import an X.509 certificate from a PFX file into a certificate store.
Syntax
Import-Certificate [parameters]
Remarks
The certificate specified by Subject and its private key are loaded from the PKCS12 file specified by InputFile. If the file is password-protected Password is used to open it.
Subject is optional. If empty, the first certificate in the store
is loaded instead of the matching certificate.
# import a certificate import-certificate -CertStore MY -CertStoreType User -InputFile $file -Password $password
Parameter List
The following is the full list of the parameters of the cmdlet with short descriptions. Click on the links for further details.
| LogFile | The location of a file to which debug information is written. |
| CertStore | The name of the certificate store for the client certificate. |
| CertStorePassword | The password for the certificate store (if any). |
| CertStoreType | The type of certificate store for the client certificate. |
| Config | Specifies one or more configuration settings. |
| InputFile | The input file. |
| LogFile | The location of a file to which debug information is written. |
| Password | The certificate's password. |
| Subject | Specifies the subject of the certificate to import. |
Output Objects
The following is the full list of the output objects returned by the cmdlet with short descriptions. Click on the links for further details.
| ImportedCert | This object is returned for each certificate imported from a store. |
Configuration Settings
The following is a list of configuration settings for the cmdlet with short descriptions. Click on the links for further details.
| CertComment | A comment to include in a saved certificate. |
| CertificateOutputFormat | The format of the certificate to save. |
| CertKeyLength | The public key length for created certificates and keys. |
| CertKeyType | The types of keys created for new certificates. |
| CertPublicKeyAlgorithm | The public key algorithm used when a certificate is created. |
| CertSignatureAlgorithm | The signature algorithm used when creating certificates. |
| CertValidityTime | The validity period for the certificate. |
| CertValidityOffset | The number of days until the certificate becomes valid. |
| CSP | The Cryptographic Service Provider. |
| ExportedCert | The exported certificate file. |
| ExportFormat | The format of the exported certificate. |
| ImportCertAction | Specified the action to take if a matching certificate or a link to a matching certificate already exists. |
| JWKAlgorithm | The JWK algorithm. |
| JWKKeyId | The JWK key Id. |
| JWKKeyOps | The JWK intended key operations list. |
| JWKUse | The JWK use parameter value. |
| KeyFormat | How the public and private key are formatted. |
| ReplaceKey | Whether or not to replace an existing key when creating a new key. |
| RequestSubjectAltNames | Subject Alternative Names for a Certificate Signing Request. |
| SavedCert | The saved certificate file. |
| SubjectAltNames | Subject Alternative Names for creating or issuing certificates. |
| UseBackgroundThread | Whether threads created by the cmdlet are background threads. |
| UseInternalSecurityAPI | Tells the cmdlet whether or not to use the system security libraries or an internal implementation. |