Merge pull request #151 from Keyfactor/75657-Update_Documentation_For_Container_Use

75657 update documentation for container use & Fixed Null error

Author: rcpokorny

CHANGELOG.md

@@ -5,6 +5,7 @@
 * Fixed an issue with complex PFX passwords that contained special characters such as '@' or '$', etc.
 * Fixed an issue when adding certificate to store, sometimes the wrong thumbprint was returned, thus breaking web site binding.
 * Removed the IIS bindings check.  Now bindings are handled similar to IIS - if you bind a cert to a site using the same bindings, you risk the possibility of one of the duplicate sites to stop working and the certificate being bound to either site.  Refer to IIS Documentation pertaining to HTTPS binding.
+* Fixed an issue with (remote) ODKG jobs that caused an error when the CSP was not specified.
 
 2.6.2
 * Fixed error when attempting to connect to remote computer using UO service account

IISU/PSHelper.cs

@@ -386,7 +386,7 @@ public Collection<PSObject> ExecutePowerShellScript(string script)
                 }
 
                 // Add Parameters if provided
-                if (parameters != null)
+                if (parameters != null && parameters.Count > 0)
                 {
                     if (isLocalMachine || isScript)
                     {
@@ -398,13 +398,18 @@ public Collection<PSObject> ExecutePowerShellScript(string script)
                     else
                     {
                         // Remote execution: Use ArgumentList for parameters
-                        var paramBlock = string.Join(", ", parameters.Select(p => $"[{p.Value.GetType().Name}] ${p.Key}"));
+                        var paramBlock = string.Join(", ", parameters.Select(p =>
+                        {
+                            string typeName = p.Value?.GetType().Name ?? "object";
+                            return $"[{typeName}] ${p.Key}";
+                        }));
+
                         var paramUsage = string.Join(" ", parameters.Select(p => $"-{p.Key} ${p.Key}"));
 
                         string scriptBlockWithParams = $@"
-                    param({paramBlock})
-                    {commandOrScript} {paramUsage}
-                ";
+                            param({paramBlock})
+                            {commandOrScript} {paramUsage}
+                        ";
 
                         PS.Commands.Clear(); // Clear previous commands
                         PS.AddCommand("Invoke-Command")

README.md

@@ -92,12 +92,19 @@ Before installing the Windows Certificate Universal Orchestrator extension, we r
 
 
 <details>
-<summary><b>Using the WinCert Extension on Linux servers:</b></summary>
+<summary><b>Using the WinCert Extension on Linux servers and/or with Docker Containers:</b></summary>
 
 1. General SSH Setup Information: PowerShell 6 or higher and SSH must be installed on all computers.  Install SSH, including ssh server, that's appropriate for your platform.  You also need to install PowerShell from GitHub to get the SSH remoting feature.  The SSH server must be configured to create a SSH subsysten to host a PowerShell process on the remote computer.  It is suggested to turn off password authentication as this extension uses key-based authentication.  
 
 2. SSH Authentication: When creating a Keyfactor certificate store for the WinCert orchestrator extension, the only protocol supported to communicate with Windows servers is ssh.  When providing the user id and password, the connection is attempted by creating a temporary private key file using the contents in the Password textbox. Therefore, the password field must contain the full SSH Private key.  
 
+3. If you choose to run this extension in a containerized environment, the container image must include PowerShell version 7.5 or later, along with either OpenSSH clients (for SSH-based connections) or OpenSSL (if SSL/TLS operations are required). Additionally, the PWSMan PowerShell module must be installed to support management tasks and remote session functionality. These dependencies are required to ensure full compatibility when connecting from the container to remote Windows servers.  Below is an example Docker file snippet:
+```
+dnf install https://github.com/PowerShell/PowerShell/releases/download/v7.5.2/powershell-7.5.2-1.rh.x86_64.rpm
+pwsh -Command 'Install-Module -Name PSWSMan'
+dnf install openssh-clients openssl
+```
+
 </details>
 
 <details>

docsource/content.md

@@ -39,12 +39,19 @@ In version 2.0 of the IIS Orchestrator, the certificate store type has been rena
 ## Requirements
 
 <details>
-<summary><b>Using the WinCert Extension on Linux servers:</b></summary>
+<summary><b>Using the WinCert Extension on Linux servers and/or with Docker Containers:</b></summary>
 
 1. General SSH Setup Information: PowerShell 6 or higher and SSH must be installed on all computers.  Install SSH, including ssh server, that's appropriate for your platform.  You also need to install PowerShell from GitHub to get the SSH remoting feature.  The SSH server must be configured to create a SSH subsysten to host a PowerShell process on the remote computer.  It is suggested to turn off password authentication as this extension uses key-based authentication.  
 
 2. SSH Authentication: When creating a Keyfactor certificate store for the WinCert orchestrator extension, the only protocol supported to communicate with Windows servers is ssh.  When providing the user id and password, the connection is attempted by creating a temporary private key file using the contents in the Password textbox. Therefore, the password field must contain the full SSH Private key.  
 
+3. If you choose to run this extension in a containerized environment, the container image must include PowerShell version 7.5 or later, along with either OpenSSH clients (for SSH-based connections) or OpenSSL (if SSL/TLS operations are required). Additionally, the PWSMan PowerShell module must be installed to support management tasks and remote session functionality. These dependencies are required to ensure full compatibility when connecting from the container to remote Windows servers.  Below is an example Docker file snippet:
+```
+dnf install https://github.com/PowerShell/PowerShell/releases/download/v7.5.2/powershell-7.5.2-1.rh.x86_64.rpm
+pwsh -Command 'Install-Module -Name PSWSMan'
+dnf install openssh-clients openssl
+```
+
 </details>
 
 <details>