ActiveDirectoryCSDsc icon indicating copy to clipboard operation
ActiveDirectoryCSDsc copied to clipboard
verified publisher icon dsccommunity

AdcsCertificationAuthority: AllowAdministratorInteraction property missing

Open dbond007 opened this issue 4 years ago • 2 comments

Details of the scenario you tried and the problem that is occurring

Trying to setup a CA with a HSM, AllowAdministratorInteraction is required if the private key is to be allowed to be backed up to a smartcard. This can not be set with the current implementation that I can see.

Suggested solution to the issue

Add AllowAdministratorInteraction as a property in DSC_AdcsCertificationAuthority as a boolean.

dbond007 avatar Aug 25 '21 10:08 dbond007

Thanks for raising this @dbond007 - looks like a good feature to get added if possible.

PlagueHO avatar Aug 25 '21 19:08 PlagueHO

From what I could see its the only one not available from the install-adcscertificateauthority powershell module that is used to do the install. I have added it to my fork, in: https://github.com/dbond007/ActiveDirectoryCSDsc I haven't done much testing, but it is just passing the parameter like the rest. The resource, mof and unit test were updated to add it. I'm new to powershell DSC module creation so I could have done it all wrong :) I can create a PR if wanted.

dbond007 avatar Aug 26 '21 10:08 dbond007