How can I use my own certificate with the NPS Extension? скачать в хорошем качестве

How can I use my own certificate with the NPS Extension?

This video walks through the steps necessary to register and use a specific certificate with your NPS Extension. This is something you may want to do to get certs that are valid for more than 2 years and are issued by a Certificate Authority that is tracking its expiration date. Whereas self-signed certificates have no centralized method to track their expiration, leading to expired certs and users being unable to authenticate. There are several steps that need to happen, the last one being the registration of the certificate. Here's the code that I use in the video to register the certificate: Connect-MsolService $cer = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2 $cer.Import("c"\YouPathHere\cert.pfx") $bin = $cer.GetRawCertData() $base64Value = [System.Convert]::ToBase64String($bin) New-MsolServicePrincipalCredential -AppPrincipalId "981f26a1-7f43-403b-a875-f8b09b8cd720" -Type asymmetric -Usage verify -Value $base64value -Verbose You can check the cert is registered by running the following: Get-MsolServicePrincipalCredential -AppPrincipalId "981f26a1-7f43-403b-a875-f8b09b8cd720" -ReturnKeyValues 1 That will spit out the cert info for the AppID, now take the Value for the cert that matches the Start/End date/time and paste it into notepad like this: ----BEGIN CERTIFICATE---- MIIDQzCCAiugA--YOUR CERT GIBBERISH HERE-------8yxlfupDywOc7V6EnrJvuhkl4= ----END CERTIFICATE---- and save as MyCert.cer. Then open it and confirm it's all there.