Table of contents
TLS
TOC
Collapse the table of content
Expand the table of content

Export-Certificate

Last Updated: 3/8/2017

SYNOPSIS

Exports a certificate from a certificate store into a file.

SYNTAX

Export-Certificate [-Type <CertType>] [-NoClobber] [-Force] -FilePath <String> -Cert <Certificate> [-WhatIf]
 [-Confirm] [<CommonParameters>]

DESCRIPTION

The Export-Certificate cmdlet exports a certificate from a certificate store to a file. The private key is not included in the export. If more than one certificate is being exported, then the default file format is SST. Otherwise, the default format is CERT. Use the Type parameter to change the file format.

EXAMPLES

EXAMPLE 1

PS C:\>$cert = (Get-ChildItem -Path cert:\CurrentUser\My\EEDEF61D4FF6EDBAAD538BB08CCAADDC3EE28FF)



PS C:\>Export-Certificate -Cert $cert -FilePath c:\certs\user.sst -Type SST

This example exports a certificate to the file system as a Microsoft serialized certificate store without its private key.

EXAMPLE 2

PS C:\>$cert = (Get-ChildItem -Path cert:\CurrentUser\My\EEDEF61D4FF6EDBAAD538BB08CCAADDC3EE28FF)



PS C:\>Export-Certificate -Cert $cert -FilePath c:\certs\user.cer

This example exports a certificate to the file system as a DER-encoded .cer file without its private key.

EXAMPLE 3

PS C:\>$cert = ( Get-ChildItem -Path cert:\CurrentUser\My\EEDEF61D4FF6EDBAAD538BB08CCAADDC3EE28FF )



PS C:\>Export-Certificate -Cert $cert -FilePath c:\certs\user.p7b -Type p7b

This example exports a certificate to the file system as a PKCS#7-fomatted .p7b file without its private key.

EXAMPLE 4

PS C:\>Get-ChildItem -Path cert:\CurrentUser\my | Export-Certificate -FilePath c:\certs\allcerts.sst -Type SST

This example exports all certificates under CurrentUser\my store into a Microsoft serialized certificate store allcerts.sst.

PARAMETERS

-Cert

Specifies one or more certificates to be exported to a file. A single certificate object, an array of certificate objects, or a path to one or more certificates in a certificate store can be specified.

Type: Certificate
Parameter Sets: (All)
Aliases: 

Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: False

-Confirm

Prompts you for confirmation before running the cmdlet.

Type: SwitchParameter
Parameter Sets: (All)
Aliases: cf

Required: False
Position: Named
Default value: False
Accept pipeline input: False
Accept wildcard characters: False

-FilePath

Specifies the location where the exported certificate will be stored.

Type: String
Parameter Sets: (All)
Aliases: FullName

Required: True
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Force

Specifies that the exported certificate file will overwrite an existing certificate file, unless the Read-only or hidden attribute is set or the NoClobber parameter is also used. The NoClobber parameter takes precedence over this parameter when both are used.

Type: SwitchParameter
Parameter Sets: (All)
Aliases: 

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-NoClobber

Prevents an exported certificate file from overwriting an existing certificate file. This parameter takes precedence over the Force parameter, which permits this cmdlet to overwrite an existing certificate file, even if it has the Read-only attribute set.

Type: SwitchParameter
Parameter Sets: (All)
Aliases: 

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Type

Specifies the type of output file for the certificate export as follows.

-- SST: A Microsoft serialized certificate store (.sst) file format which can contain one or more certificates. This is the default value for multiple certificates.

-- CERT: A .cer file format which contains a single DER-encoded certificate. This is the default value for one certificate.

-- P7B: A PKCS#7 file format which can contain one or more certificates.

Type: CertType
Parameter Sets: (All)
Aliases: 
Accepted values: SST, CERT, P7B

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-WhatIf

Shows what would happen if the cmdlet runs. The cmdlet is not run.

Type: SwitchParameter
Parameter Sets: (All)
Aliases: wi

Required: False
Position: Named
Default value: False
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

INPUTS

System.Security.Cryptography.X509Certificates.X509Certificate2

A Certificate object can be piped into to this cmdlet.

OUTPUTS

System.IO.FileInfo

The FileInfo object contains the information about the certificate file.

NOTES

Get-ChildItem

Import-Certificate

© 2017 Microsoft