Skip to content

Release 3.0 #176

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
rcpokorny merged 3 commits into from
Jan 12, 2026
Merged

Release 3.0 #176

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
0aea991
release: 2.6.4
rcpokorny Jan 5, 2026
dd621bd
Merge pull request #170 from Keyfactor/release-2.6
spbsoluble Jan 6, 2026
aca763e
Update generated docs
Jan 6, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 7 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,10 @@

2.6.4
Copy link

Copilot AI Jan 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The PR title indicates "Release 3.0" but the CHANGELOG.md shows version "2.6.4". This inconsistency could cause confusion about the actual version being released. Please ensure the version number in the CHANGELOG matches the intended release version indicated in the PR title.

Suggested change
2.6.4
3.0

Copilot uses AI. Check for mistakes.
* Fixed an issue with SSL Flags greater than 3 were not being applied correctly to newer IIS servers.
* Fixed an issue when formatting private RSA keys when connecting using the ssh protocol.
* When using ssh protocol in containers, the SQL ACL on private keys was not being updating correctly. This has been fixed.
* Updated documentation to indicate that the username and password fields on the Cert Store are automatically added by Command.

2.6.3
* Fixed re-enrollment or ODKG job when RDN Components contained escaped commas.
* Updated renewal job for IIS Certs to delete the old cert if not bound or used by other web sites.
Expand Down
5 changes: 3 additions & 2 deletions IISU/PSHelper.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -635,9 +635,10 @@ private string createPrivateKeyFile()

private static string formatPrivateKey(string privateKey)
{
String keyType = privateKey.Contains("OPENSSH PRIVATE KEY") ? "OPENSSH" : "RSA";
string header = privateKey.Substring(0, privateKey.IndexOf("KEY-----") + 8);
string footer = privateKey.Substring(privateKey.IndexOf("-----END"));

return privateKey.Replace($" {keyType} PRIVATE ", "^^^").Replace(" ", System.Environment.NewLine).Replace("^^^", $" {keyType} PRIVATE ") + System.Environment.NewLine;
return privateKey.Replace(header, "HEADER").Replace(footer, "FOOTER").Replace(" ", Environment.NewLine).Replace("HEADER", header).Replace("FOOTER", footer) + Environment.NewLine;
Comment on lines +638 to +641
Copy link

Copilot AI Jan 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The new implementation assumes the privateKey parameter contains both "KEY-----" and "-----END" substrings. If either substring is missing, the IndexOf method will return -1, causing the Substring method to throw an ArgumentOutOfRangeException. Consider adding validation to ensure these delimiters exist before attempting to extract header and footer, or handle the exception appropriately.

Copilot uses AI. Check for mistakes.
}
}
}
697 changes: 603 additions & 94 deletions IISU/PowerShellScripts/WinCertScripts.ps1
View file
Open in desktop

Large diffs are not rendered by default.

299 changes: 271 additions & 28 deletions README.md
View file
Open in desktop

Large diffs are not rendered by default.

Binary file modified docsource/images/IISU-advanced-store-type-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file modified docsource/images/IISU-basic-store-type-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-custom-field-ServerUseSsl-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-custom-field-WinRMPort-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-custom-field-WinRMProtocol-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-custom-field-spnwithport-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-entry-parameters-store-type-dialog-HostName.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-entry-parameters-store-type-dialog-IPAddress.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-entry-parameters-store-type-dialog-Port.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-entry-parameters-store-type-dialog-Protocol.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-entry-parameters-store-type-dialog-ProviderName.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-entry-parameters-store-type-dialog-SAN.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-entry-parameters-store-type-dialog-SiteName.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/IISU-entry-parameters-store-type-dialog-SniFlag.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file modified docsource/images/WinCert-advanced-store-type-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/WinCert-custom-field-ServerUseSsl-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/WinCert-custom-field-WinRMPort-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/WinCert-custom-field-WinRMProtocol-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/WinCert-custom-field-spnwithport-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/WinCert-entry-parameters-store-type-dialog-ProviderName.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/WinCert-entry-parameters-store-type-dialog-SAN.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file modified docsource/images/WinCert-entry-parameters-store-type-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file modified docsource/images/WinSql-advanced-store-type-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/WinSql-custom-field-RestartService-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/WinSql-custom-field-ServerUseSsl-dialog.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docsource/images/WinSql-custom-field-WinRMPort-dialog.png
View file
Open in desktop
Binary file added docsource/images/WinSql-custom-field-WinRMProtocol-dialog.png
View file
Open in desktop
Binary file added docsource/images/WinSql-custom-field-spnwithport-dialog.png
View file
Open in desktop
Binary file added docsource/images/WinSql-entry-parameters-store-type-dialog-InstanceName.png
View file
Open in desktop
Binary file added docsource/images/WinSql-entry-parameters-store-type-dialog-ProviderName.png
View file
Open in desktop
Binary file added docsource/images/WinSql-entry-parameters-store-type-dialog-SAN.png
View file
Open in desktop
44 changes: 22 additions & 22 deletions integration-manifest.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -80,7 +80,7 @@
"DependsOn": "",
"DefaultValue": "",
"Required": false,
"Description": "Username used to log into the target server for establishing the WinRM session. Example: 'administrator' or 'domain\\username'."
"Description": "Username used to log into the target server for establishing the WinRM session. Example: 'administrator' or 'domain\\username'. (This field is automatically created)"
},
{
"Name": "ServerPassword",
Expand All @@ -89,7 +89,7 @@
"DependsOn": "",
"DefaultValue": "",
"Required": false,
"Description": "Password corresponding to the Server Username used to log into the target server. When establishing a SSH session from a Linux environment, the password must include the full SSH Private key."
"Description": "Password corresponding to the Server Username used to log into the target server. When establishing a SSH session from a Linux environment, the password must include the full SSH Private key. (This field is automatically created)"
},
{
"Name": "ServerUseSsl",
Expand Down Expand Up @@ -187,23 +187,23 @@
"Required": true,
"Description": "String value specifying the port number that the Windows target server's WinRM listener is configured to use. Example: '5986' for HTTPS or '5985' for HTTP. By default, when using ssh in a Linux environment, the default port number is 22."
},
{
"Name": "ServerUsername",
"DisplayName": "Server Username",
"Type": "Secret",
"DependsOn": "",
"DefaultValue": "",
"Required": false,
"Description": "Username used to log into the target server for establishing the WinRM session. Example: 'administrator' or 'domain\\username'."
},
{
"Name": "ServerUsername",
"DisplayName": "Server Username",
"Type": "Secret",
"DependsOn": "",
"DefaultValue": "",
"Required": false,
"Description": "Username used to log into the target server for establishing the WinRM session. Example: 'administrator' or 'domain\\username'. (This field is automatically created)"
},
{
"Name": "ServerPassword",
"DisplayName": "Server Password",
"Type": "Secret",
"DependsOn": "",
"DefaultValue": "",
"Required": false,
"Description": "Password corresponding to the Server Username used to log into the target server. When establishing a SSH session from a Linux environment, the password must include the full SSH Private key."
"Description": "Password corresponding to the Server Username used to log into the target server. When establishing a SSH session from a Linux environment, the password must include the full SSH Private key. (This field is automatically created)"
},
{
"Name": "ServerUseSsl",
Expand Down Expand Up @@ -391,23 +391,23 @@
"Required": true,
"Description": "String value specifying the port number that the Windows target server's WinRM listener is configured to use. Example: '5986' for HTTPS or '5985' for HTTP. By default, when using ssh in a Linux environment, the default port number is 22."
},
{
"Name": "ServerUsername",
"DisplayName": "Server Username",
"Type": "Secret",
"DependsOn": "",
"DefaultValue": "",
"Required": false,
"Description": "Username used to log into the target server for establishing the WinRM session. Example: 'administrator' or 'domain\\username'."
},
{
"Name": "ServerUsername",
"DisplayName": "Server Username",
"Type": "Secret",
"DependsOn": "",
"DefaultValue": "",
"Required": false,
"Description": "Username used to log into the target server for establishing the WinRM session. Example: 'administrator' or 'domain\\username'. (This field is automatically created)"
},
{
"Name": "ServerPassword",
"DisplayName": "Server Password",
"Type": "Secret",
"DependsOn": "",
"DefaultValue": "",
"Required": false,
"Description": "Password corresponding to the Server Username used to log into the target server. When establishing a SSH session from a Linux environment, the password must include the full SSH Private key."
"Description": "Password corresponding to the Server Username used to log into the target server. When establishing a SSH session from a Linux environment, the password must include the full SSH Private key. (This field is automatically created)"
},
{
"Name": "ServerUseSsl",
Expand Down
Loading