cli icon indicating copy to clipboard operation
cli copied to clipboard
verified publisher icon smallstep

step (Windows) with Silentflag

Open maraino opened this issue 3 years ago • 2 comments

Discussed in https://github.com/smallstep/certificates/discussions/856

Originally posted by stastka March 17, 2022 I create a Workflow to generate Certificate for WinRM (Windows Remote Management) over HTTPS with Powershell. It's little bit Tricky but was successful.

I run the Workflow over Invoke-Command (Remote Execution) and the Output from step (Sample: ✔ Provisioner abc...) return to my Shell a False Positive Error. I make a workaround with save Token to a Textfile but not so elegant. stepca-powershell

my wish: a silent Flag --silent to reduce output. Dany

maraino avatar Mar 17 '22 17:03 maraino

I need a silent flag for the command "step ca bootstrap --install ...". Because when installing the CA Bundle otherwise a query from Windows appears whether the certificate may be installed.

This would mean that in an Intune environment, for example, no automated installation of the CA Bundle would be possible in the background.

https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/certutil#-installcert

strausmann avatar Mar 20 '22 11:03 strausmann

@strausmann, do you get a popup or something like that or a prompt in the terminal?

We don't use certutil for installing the root certificate, we do it using a call to the Windows API function CertAddEncodedCertificateToStore. The code is here.

maraino avatar Mar 31 '22 18:03 maraino