v6.0.2

• Add search properties Status, ExpireBefore, ExpireAfter, Version, and SanDns to Find-VcCertificate
• Add Remove-VdcCertificateAssociation

v6.0.1

• Update Export-VdcCertificate to return just certificate if private key isn't available for supporting formats
• Add support for PKCS #8 in Import-VcCertificate -Data, by file will come in a future release

v6.0.0

This is a major release. Although every attempt has been made to be backwards compatible, existing scripts will likely require some updates and it is highly recommended that prior versions be uninstalled. Please read the full release notes.

• TPP is now TLS Protect Datacenter (TLSPDC) and VaaS is now TLS Protect Cloud (TLSPC). All functions have been renamed to prefix with -Vdc (Venafi Datacenter) or -Vc (Venafi Cloud). Combined platform functions, those prefixed with -Venafi, have all been updated to dedicated platform functions. The desire to add additional functionality for each platform and reduce parameter set complexity drove this decision. The only exception to this rule are the functions related to the session. Aliases have been added where applicable.
• VenafiPS is now signed. Test-ModuleHash has been deprecated.
• VenafiSession is stored for nested operations each time a function is called directly. This has 2 main benefits:
  • Performance enhancement bypassing Test-VenafiSession in nested functions
  • No longer need to pass VenafiSession to each function when sending function output down the pipeline
• Parallel functionality added for many functions, notably export and import certificates. Ensure you are using PowerShell v7!
• Add Certificate, Key, and Chain PEM to Export-VdcCertificate and Export-VcCertificate Base64 output
• For PSCredential objects which only required a password and not username, add the ability to provide either a password String, SecureString, or PSCredential.
• Find-VaasObject has been replaced with dedicated functions Find-VcCertificateRequest, Find-VcLog, Find-VcMachine, and Find-VcMachineIdentity. These functions have property filters specific to their types making it super easy to search.
• Environment variable names updated:
  • TPP_SERVER -> VDC_SERVER
  • TPP_TOKEN -> VDC_TOKEN
  • VAAS_KEY -> VC_KEY
• Add keystore/private key import to Import-VcCertificate
• Update Invoke-VenafiParallel to be version aware. Parallel on PowerShell v7+, synchronous otherwise
• Add option to save .crt/.key with Export-VdcCertificate , #226
• Update TLSPC searching to make -Order case insensitive
• Fix Get-TppAttribute -Disabled not working, #221
• Fix exporting JKS to a file, #225
• Revoke-TppCertificate deprecated, use Invoke-VdcCertificateAction -Revoke
• Dedicated removal functions created for TLSPC
• Add filters -IsSelfSigned and -IsWildcard to Find-VdcCertificate
• CodeSign Protect functions have been deprecated

v5.8.1

• Remove deprecated application server types from New-VaasCertificate

v5.8.0

• Add Find-VaasMachine to find machines by type or status. The list of attributes to search by will increase over time. Find-VaasObject -Type Machine can always be used as well.
• Add Get-VaasMachine to get machines by uuid, name, or get all.
• Update Invoke-VaasWorkflow output to include workflow id (wsClientId)
• Add machine creation functions New-VaasMachine, New-VaasMachineIis, and New-VaasMachineCommonKeystore. These require PowerShell v7+ and have parallel processing. New-VaasMachine is for basic machines with hostname, credential, and optional port, eg. Citrix and F5.
• Add machine types to $VenafiSession.MachineTypes when using New-VenafiSession for VaaS
• Add Invoke-VenafiParallel private function to easily execute operations in parallel. Requires PowerShell v7+.
• Add argument completer to New-VaasMachine -MachineType and Find-VaasMachine -MachineType for dynamic tab-ahead list of machine types
• Add PSSodium as a nested module, required for machine creation functions

v5.7.0

• Add Find-VenafiCertificate -SavedSearchName to find VaaS certificate details via an existing saved search filter
• Add Get-VaasSatellite to retrieve vsatellite details optionally including encryption key and algorithm
• Add Set-VaasCertificateAssignment to add or replace applications associated to certificates
• Add User property to $VenafiSession when connecting to VaaS. All kinds of helpful info here including company ID.
• Fix credentials not being written to the vault with New-VenafiSession -VaultVaasKeyName

v5.6.0

• Add specific error messages when a TPP token scope/privilege is not sufficient for the current function. The message will include both the current and missing scope/privilege, #175.
• Add Set-VaasTeam to update existing VaaS teams. You can update the name, role, and/or user matching rules. User matching rules can be overwritten or appended to.
• Add Remove-VaasObject to remove a VaaS team, application, machine, machine identity, tag, or connector.
• Remove TppObject class. This was causing issues for some who aren't familiar with the Using keyword and differences between it and import-module when it comes to classes.
• Add Invoke-VaasWorkflow to trigger either a Test, Provision, or Discover machine/machine identity workflow. As one example, this is super helpful when looking to automate renewal and provisioning of certificates that may expire soon.

v5.5.1

• Fix error with Get-TppPermission when an identity which had been permissioned has had its account deleted. Explicit permissions will be returned, but the identity path and name will be null as we can no longer look it up from the provider.
• Get-TppPermission -Attribute has been deprecated. Identity path and name are included in the return object. For other attributes, use Get-TppIdentityAttribute.

v5.5.0

• Add Set-TppAttribute -NoOverwrite to allow additions to an attribute list. #189
• Add Get-TppAttribute -NoLookup for the remote cases where a built-in attribute and custom field have the same name. The default will be to look for a custom field. Use -NoLookup to override. #192
• Add ability to export the chain on VaaS with Export-VenafiCertificate
• Add ability to export a certificate to a file on VaaS with Export-VenafiCertificate
• Fix certain characters in friendly name causing Test-TppIdentityFormat to fail, #205
• Add ability to set specific permission with Set-TppPermission and not just an entire permissions object, #197
• Enhance pipeline support for Set-TppPermission
• Fix failure removing a custom field value with Set-TppAttribute, #199
• Fix ConvertTo-TppFullPath appending '\ved\policy' incorrectly on non-Windows environments

v5.4.1

• Add support for JWT token authentication in New-VenafiSession and New-TppToken