Support encryption with x.509 cert in win certmgr

[ajdergute]

In an environment where no KMS is available, but a corporate PKI is in place, it would be very handy to encrypt data with a personal X.509 certificate.

To do so I propose to use the Protect-CmsMessage Cmdlet of PowerShell.

This could also be invoked via WSL on Windows by calling powershell.exe. This Cmdlet also supports key selection, which could be similar to PGP.

I'm not sure about the contribution process. Should I come up with some demo code?