证书更新、更换时触发事件

Question

是否有一个定期调用的脚本，将所有现有证书的指纹写入文件？每次运行时，如果发现文件中没有的新指纹，它可以触发脚本其余部分需要执行的操作，并更新文件。

$file = ".\certsSeenBefore.txt"
# make sure the above file exists
If (-not (Test-Path $file)) { New-Item $file -ItemType File }

# for each cert, see if the thumbprint is in the file
Get-ChildItem Cert:\LocalMachine\My\ | foreach {
    if ((Get-Content($file)) -contains $_.Thumbprint)
    {
        # all good
    }
    else
    {
        Write-Host "Ah Ha! THere's a new cert $_.Subject"

        # Add the thumbprint to the file so it doesn't get triggered again.
        Add-Content $file -Value $_.Thumbprint

        # call whatever it is you need to do

        # ....

    }
}

抱歉，我知道这不是一个完整的答案，但是没有足够的信息来发表评论。

Answer 1

是否有一个定期调用的脚本，将所有现有证书的指纹写入文件？每次运行时，如果发现文件中没有的新指纹，它可以触发脚本其余部分需要执行的操作，并更新文件。

$file = ".\certsSeenBefore.txt"
# make sure the above file exists
If (-not (Test-Path $file)) { New-Item $file -ItemType File }

# for each cert, see if the thumbprint is in the file
Get-ChildItem Cert:\LocalMachine\My\ | foreach {
    if ((Get-Content($file)) -contains $_.Thumbprint)
    {
        # all good
    }
    else
    {
        Write-Host "Ah Ha! THere's a new cert $_.Subject"

        # Add the thumbprint to the file so it doesn't get triggered again.
        Add-Content $file -Value $_.Thumbprint

        # call whatever it is you need to do

        # ....

    }
}

抱歉，我知道这不是一个完整的答案，但是没有足够的信息来发表评论。

证书更新、更换时触发事件

答案1

相关内容