search

microsoft / Intune-Resource-Access

Sample code and scripts for interfacing with the Intune Resource Access APIs.
MIT License
54 stars 58 forks source link

EncryptedPfxBlob : {0} #153

Closed Geolem1903 closed 4 months ago

Geolem1903 commented 4 months ago

Dear Team,

I have followed rigorously your documentation to make stuff work. But when I look at the content $userPFXObject compare to the result return by Get-IntuneUserPfxCertificate

On the $userPFXObject side :

PS C:> $userPFXObject Id : Thumbprint : 6ab7removed info62c87 IntendedPurpose : Unassigned UserPrincipalName : removed info StartDateTime : 24-03-23 09:28:40 +00:00 ExpirationDateTime : 24-03-24 09:28:40 +00:00 ProviderName : Microsoft Software Key Storage Provider KeyName : PFXEncryptionKey PaddingScheme : OaepSha512 EncryptedPfxBlob : {48, 130, 25, 207...} EncryptedPfxPassword : ZY2guremoved infoUO0rg== CreatedDateTime : 11-03-24 15:01:47 +00:00 LastModifiedDateTime : 11-03-24 15:01:47 +00:00

On the Get-IntuneUserPfxCertificate

PS C:> Get-IntuneUserPfxCertificate Id : 3a7fbremoved info62c87 Thumbprint : 6ab7removed info62c87 IntendedPurpose : Unassigned UserPrincipalName : removed info StartDateTime : 24-03-23 09:28:40 +00:00 ExpirationDateTime : 24-03-24 09:28:40 +00:00 ProviderName : Microsoft Software Key Storage Provider KeyName : PFXEncryptionKey PaddingScheme : OaepSha512 EncryptedPfxBlob : {0} EncryptedPfxPassword : CreatedDateTime : 11-03-24 15:01:47 +00:00 LastModifiedDateTime : 11-03-24 15:02:21 +00:00

Is-it expected that the value returned by EncryptedPfxBlob and EncryptedPfxPassword looks like empty ?

I try to import GlobalSign S/MIME Certificate but looks like I missed something...

Many thanks for your time,

Geolem1903 commented 4 months ago

I'm closing this ticket. While encryptedPfxBlob and encryptedPfxPassword must be provided when a UserPFXCertificate record is imported, those values will be returned empty in any get call.