[This is preliminary documentation and is subject to change. Blank topics are included as placeholders.]

Creates a new certificate ID object based on an existing certificate obtained from a trusted Certificate Authority (CA).


New-CsWebTrustedCACertificate -CAStore <TrustedRootCA | IntermediateCA | ThirdPartyRootCA> -Thumbprint <String>


Parameter Required Type Description


Thumbprint of the certificate obtained from the trusted CA. You can retrieve certificate issuer and thumbprint values by running this command:

Get-CsCertificate | Select-Object Issuer, Thumbprint.


Indicates the certificate store where the certificate obtained from the trusted CA is stored. Valid values are:




Detailed Description

Web server configuration settings are used to help manage Communications Server Web servers and Web services. Among the property values that can be managed using these settings is the TrustedCACerts property; this property represents a collection of the Certificate Authorities trusted by the Web servers. To add a new CA to the collection, you must first obtain a certificate from that Certificate Authority. After the certificate has been added, you can then use the New-CsWebTrustedCACertificate to create a certificate ID object that, in turn, can be added to a collection of Web service configuration settings.

Return Types

New-CsWebTrustedCACertificate creates new instances of the Microsoft.Rtc.Management.WriteableConfig.Settings.Web.CACertID object.


-------------------------- Example 1 ------------------------

Copy Code
$x = New-CsWebTrustedCACertificate -Thumbprint "D543DFF74FEEA425162FD25F342786F1AB453BB3" -CAStore TrustedRootCA

Set-CsWebServiceConfiguration -Identity site:Redmond -TrustedCACerts @{Add=$x}

The commands shown in Example 1 create a new trusted Web certificate and then add that certificate to the TrustedCACerts property of the Redmond site’s Web service configuration properties. To carry out this task, the first command in the example uses New-CsWebTrustedCACertificate to create a new trusted Web certificate; the certificate itself is found in the Trusted Root certificate store and has the Thumbprint D543DFF74FEEA425162FD25F342786F1AB453BB3. The resulting certificate object is stored in a variable named $x.

After the certificate object has been created, the second command in the example adds that certificate to the TrustedCACerts property of the Redmond site’s Web service configuration properties. To do this, the command uses the Set-CsWebServiceConfiguration cmdlet and the –TrustedCACerts parameter; the parameter value ${Add=$x} tells the cmdlet to add the certificate stored in the variable $x to the collection of trusted Web certificates.