Applies to: SharePoint Server 2013, SharePoint Foundation 2013

Topic Last Modified: 2010-07-21

Creates a trusted root authority.

New-SPTrustedRootAuthority [-Name] <String> -Certificate <X509Certificate2> [-AssignmentCollection <SPAssignmentCollection>]

The New-SPTrustedRootAuthority cmdlet creates a trusted root authority. If a certificate file is used, it must have only one X509 certificate without private keys, otherwise an exception is raised.


Parameter Required Type Description




Specifies the name of the trusted root authority to create.

The type must be a valid name of a trusted root authority; for example, WFEFarm1.




Specifies the X.509 certificate of the trusted root authority.

The type must be a name of a valid X.509 certificate; for example, Certificate1.




Manages objects for the purpose of proper disposal. Use of objects, such as SPWeb or SPSite, can use large amounts of memory and use of these objects in Windows PowerShell scripts requires proper memory management. Using the SPAssignment object, you can assign objects to a variable and dispose of the objects after they are needed to free up memory. When SPWeb, SPSite, or SPSiteAdministration objects are used, the objects are automatically disposed of if an assignment collection or the Global parameter is not used.

When the Global parameter is used, all objects are contained in the global store. If objects are not immediately used, or disposed of by using the Stop-SPAssignment command, an out-of-memory scenario can occur.


$cert = Get-PfxCertificate C:\LiveIDSigningCert.pfx
New-SPTrustedRootAuthority -Name "WFEFarm1" -Certificate $cert

This example creates a new trusted root authority, WFEFarm1.