Releases: Venafi/VenafiPS
Releases · Venafi/VenafiPS
v6.8.0
- Add
Get-VenafiSessionto centralize session management. For nested and/or piped functions, pull the session from the call stack. - Add PolicyPath to
Export-VdcCertificateoutput andImport-VdcCertificate -PolicyPath. This allows the imported certificate to be created in the same policy folder. This could be used to synchronize across environments for example. The addition ofImport-VdcCertificate -Forcewill cause a policy path to be created if it does not already exist; policy subfolders are supported as well. - Add
Import-VcCertificateblocklist functionality. Override the blocklist by default and honor the blocklist if the environment variable VC_ENABLE_BLOCKLIST is set to true. - Fix VC import failure with a large number of keystores, #322
- Hide dekEncryptedPassword from verbose output
- Remove Filename from
Export-VdcCertificatewhen outputting data and not writing to a file
v6.7.4
- Add support for X509 (.pem, .cer, and .crt) to
Import-VcCertificate. Both by path and by data are supported. Pull in a folder full of certificates or pipe from either TLSPDC or another TLSPC tenant. - Add
Find-VcCertificate -IsExpired - Better support for exporting and importing certificates between TLSPDC and TLSPC via pipeline
- Fix bug with
New-VcSearchQuerywhen a specific number of filters were provided
v6.7.3
v6.7.2
v6.7.1
- Update
New-VcCertificate -IssuingTemplateto allow an alias to be provided, #313.-IssuingTemplateis now also optional if the application only has 1 associated template. - Add
Set-VcCertificateRequest -RejectReasonto specify a reason for rejection. The default is 'Rejection processed by VenafiPS'.
v6.7.0
- Add
Set-VcCertificateRequestto approve requests. Optionally, use-Waitfor the certificate to be issued and certificate details to be available. - Add
Initialize-PSSodium -Forceto force installation of the module if it doesn't exist. This is used by the new parametersExport-VcCertificate -Force,Import-VcCertificate -Force,New-VcMachine -Force,New-VcMachineCommonKeystore -Force, andNew-VcMachineIis -Force. - Update
New-VcCertificateto retrieve default validity date from the issuing template instead of a set 90 days - Fix
Find-VdcCertificate -CountOnlyerror #309 - Updates to better facilitate moving certificates/keys between environments.
- Update
Export-VcCertificate -PKCS12to allow exporting to base64 in addition to a file. - Add standard names for Format in return objects in TLSPC and TLSPDC.
- Add PrivateKeyPasswordCredential in return objects to keep from having to provide again further down the pipeline
- Update
- Add
Invoke-VcGraphQLfor queries and mutations. This isn't used for too much as of now, but the framework is here for when it's needed. - Update
Get-VcDatato useInvoke-VcGraphQLfor Application and Team id and names. Quite often we are just converting names into IDs so graphql should give us a performance bump as opposed to the REST api. - Deprecated
Add-VcCertificateAssociation
v6.6.1
v6.6.0
- Add
Get-VcSatelliteWorker, either all, by id or all workers associated with a specific satellite - Add
Remove-VcSatelliteWorker, you guessed it...removes vsat workers - Add
Get-VcSatellite -IncludeWorkersto get vsats and their associated workers in one call. - Add
Invoke-VcCertificateAction -Provisionto push a certificate to associated machine identities. You can also use-Renew -Provisiontogether and it will renew and then provision the new certificate. - Add
Set-VcApplication -IssuingTemplateto add one or more issuing templates to an application. It will overwrite by default or use-NoOverwriteto append.