Releases: rmbolger/Posh-ACME.Deploy
Releases · rmbolger/Posh-ACME.Deploy
v2.0.0
Enhancements
Set-IISCertificate
(formerlySet-IISCertificateNew
) now supports additional SSL binding flags on newer versions of Windows including:- DisableHTTP2
- DisableOCSPStapling
- DisableQUIC
- DisableTLS13
- DisableLegacyTLS
- Documentation Revamp
- https://docs.dvolve.net/Posh-ACME.Deploy/ is a new dedicated website for module documentation. The site is currently generated using the Markdown files in the
docs
folder in the main project repository by MkDocs. So it should now be easier to contribute fixes and updates. - The native module help is now also generated by platyPS from the Markdown files in
docs/Functions
. Get-Help <function name> -Online
should now open your browser to the appropriate page on the documentation site.
- https://docs.dvolve.net/Posh-ACME.Deploy/ is a new dedicated website for module documentation. The site is currently generated using the Markdown files in the
Breaking Changes
Set-IISCertificateNew
(which relies on theIISAdministration
module) has been renamed toSet-IISCertificate
. An alias forSet-IISCertificateNew
is still included so scripts referencing it should not break. But users are encouraged to update their scripts to the non-alias name.Set-IISCertificate
(which relies on the legacyWebAdministration
module) has been deprecated and renamed toSet-IISCertificateOld
. The newSet-IISCertificate
includes a superset of the old parameters. So scripts don't necessarily need to change. However, the new function is dependent on having version 1.1.0.0 or later of theIISAdministration
module installed. It is recommended to install the necessary module and validate the new function works. Alternatively, scripts can also be updated to use the old function while it remains in the module.
v1.6.0
- Set-IISCertificateNew now accepts a string array for the
-HostHeader
param which will create bindings for each value instead of needing to call the function multiple times. (#23) - Set-NPSCertificate now has a
-PolicyXPath
parameter which can be used instead of-PolicyName
to apply the certificate to all matching policies in the XPath statement. (#24)
v1.5.0
- Set-NPSCertificate now supports both PEAP and EAP-TLS (Thanks @amorrowbellarmine)
v1.4.0
- Added
Set-IISCertificateNew
which was actually added in 1.3.0 but missed in the release notes. This should functions the same as the existingSet-IISCertificate
function but is dependent on the IISAdministration module instead of the legacy WebAdministration module and should work on PowerShell 6+. However, it requires at least version 1.1.0.0 of the IISAdministration module which is distributed from powershellgallery.com.- Using this function will also work around issue #8 which involves errors for sites with uncommon characters in their names.
- Added
Set-RASSTPCertificate
which can be used to set the certificate for the Remote Access SSTP service. (Thanks @markpizz) - The
CertThumbprint
parameter is no longer mandatory in the various public functions whenPfxFile
is specified. The thumprint will be read directly from the cert in the PFX if necessary. (#13) - Improvements and fixes for
Set-ExchangeCertificate
involving old cert removal and cert replacement on renewal. (#19) (Thanks @markpizz) - Fixed regression in
Set-ExchangeCertificate
from (#16) (Thanks @markpizz) - Added support in private functions for cert management in locations/stores other than LocalMachine\My.