SPFarm: Add SPServerCertificatePipeBind Support for the Central Administration with SPSE

[ChristophHannappel]

Problem description

SharePoint Subscrioption Edition added a few Parameters for the SPCentralAdministration Commands. The Parameter -Certificate is one of them. In conjunction with the Parameter HostHeader, UseServerNameIndication, AllowLegacyEncryption and Url it is now possible to create a Central Administration with an Certificate Binding and a URL of your choosing. Also with the benefit, that a .Provision() on the Webapplication or a psconfig run does not revert the URL to the default or removes the Binding from IIS. Also you could run two or more instances of the Central Administration behind a Loadbalancer

Currently this is not possible with the SPFarm Ressource.

Verbose logs

-

DSC configuration

-

Suggested solution

In order to achieve this the following Steps would be required:

• Test if the Cerfificate is imported before running the New-SPCentralAdministration or Set-SPCentralAdministration Command and Import it if necessary
• Expand the Parameters for the SPCentralAdministration Commands
• Expand the Ressource with the Addional Parameters

I'd be happy to work on a pull request. I'm a bit concerend that this might get in conflict with the existing SPCertificate Ressource, but also could reuse the existing code :) Also I'm happy about feedback and if this enhanced fits in.

SharePoint version and build

-

Operating system the target node is running

-

PowerShell version and build the target node is running

-

SharePointDsc version

-

[ChristophHannappel]

As an alternative a new Ressource SPCentralAdministration would be possible. Which could be used after SPFarm and SPCertificate. The Ressource would just contain the Certificate and AllowLegacyEncryption Parameter.

Also the Hostheader Parameter would be added to SPFarm. One thing about SPFarm - the reprovisioning of the Central Admin should be done with Set-SPCentralAdministration on SPSSE.