(PowerShell) Get the Certificate with Private Key from a Java KeyStore

See more Java KeyStore (JKS) Examples

Load a Chilkat certificate object from a Java KeyStore.

Chilkat .NET Downloads Chilkat .NET Assemblies

Add-Type -Path "C:\chilkat\ChilkatDotNet47-9.5.0-x64\ChilkatDotNet47.dll"

# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

# Most of the time a .jks contains one certificate with it's associated private key.
# (Similar to how a .pfx/.p12 usually contains a particular certificate with private key.)
# This example demonstrates how to get the certificate with private key such that it can be used
# by other Chilkat classes wherever a cert w/ private key is needed.
$jks = New-Object Chilkat.JavaKeyStore
$password = "secret"
$success = $jks.LoadFile($password,"qa_data/jks/test_secret.jks")
if ($success -ne $true) {
    $($jks.LastErrorText)
    exit
}

# Make sure we have a private key.
if ($jks.NumPrivateKeys -lt 1) {
    $("No private key available.")
    exit
}

# -------------------------------------------------------------------------
# Get the certificate chain associated with the 1st (and probably only) private key in the JKS.
$chain = $jks.GetCertChain(0)
if ($jks.LastMethodSuccess -ne $true) {
    $($jks.LastErrorText)
    exit
}

$cert = $chain.GetCert(0)
if ($chain.LastMethodSuccess -ne $true) {
    $($chain.LastErrorText)

    exit
}

# Verify again that this cert has a private key.
if ($cert.HasPrivateKey() -ne $true) {
    $("Certificate has no associated private key.")

    exit
}

# We now have the cert object with it's associated private key, and it can be used in other Chilkat classes where needed.
# For example..

$crypt = New-Object Chilkat.Crypt2
$success = $crypt.SetSigningCert($cert)
if ($success -eq $false) {
    $($crypt.LastErrorText)
    exit
}

# ...
# ...