az sphere ca-certificate

Manage certificates in your resource group and catalog.

Operation Description
az sphere ca-certificate list List all certificates in your resource group and catalog.
az sphere ca-certificate download Download the certificate for your catalog.
az sphere ca-certificate download-chain Download the certificate chain for your catalog as a PKCS#7 ".p7b" file.
az sphere ca-certificate download-proof Download a proof-of-possession certificate for your catalog for use with a provided code.

Commands

az sphere ca-certificate list

List all certificates in your resource group and catalog.

Required Parameters

Parameter Description
--catalog -c The Azure Sphere Catalog in which to perform this operation. Specify Azure Sphere Catalog name. You can configure the default Azure Sphere Catalog using az config set defaults.sphere.catalog=<name>. Values from: az sphere catalog list.
--resource-group -r Name of the Azure resource group. You can configure the default group using az config set defaults.group=<name>. Values from: az group list.

Examples

List all certificates in a resource group and catalog.

az sphere ca-certificate list --resource-group MyResourceGroup --catalog MyCatalog

az sphere ca-certificate download

Download the certificate for your catalog.

Required Parameters

Parameter Description
--name -n The certificate to download. Specify name. If no name is supplied, the active certificate is downloaded. Values from: az sphere ca
--output-file -of Path and file name in which to save the certificate. Specify a relative or absolute path.
--catalog -c The Azure Sphere Catalog in which to perform this operation. Specify Azure Sphere Catalog name. You can configure the default Azure Sphere Catalog using az config set defaults.sphere.catalog=<name>. Values from: az sphere catalog list.
--resource-group -r Name of the Azure resource group. You can configure the default group using az config set defaults.group=<name>. Values from: az group list.

Examples

Download an active certificate using resource group and catalog name.

az sphere ca-certificate download --resource-group MyResourceGroup --catalog MyCatalog --output-file myCert.cer

Download certificate using resource group, catalog name and certificate name.

az sphere ca-certificate download --resource-group MyResourceGroup --catalog MyCatalog --name 2E7A0AF370ABC439901BBB37AF38B97 --output-file myCert.cer

az sphere ca-certificate download-chain

Download the certificate chain for your catalog as a PKCS#7 ".p7b" file.

Required Parameters

Parameter Description
--name -n The certificate to download. Specify name. If no name is supplied, the active certificate is downloaded. Values from: az sphere ca
--output-file -of Path and file name in which to save the certificate chain. Specify a relative or absolute path using a .p7b extension.
--catalog -c The Azure Sphere Catalog in which to perform this operation. Specify Azure Sphere Catalog name. You can configure the default Azure Sphere Catalog using az config set defaults.sphere.catalog=<name>. Values from: az sphere catalog list.
--resource-group -r Name of the Azure resource group. You can configure the default group using az config set defaults.group=<name>. Values from: az group list.

Examples

Download a certificate chain using resource group and catalog name.

az sphere ca-certificate download-chain --resource-group MyResourceGroup --catalog MyCatalog --name 2E7A0AF370ABC439901BBB37AF38B97 --output-file myCertChain.p7b

Download an active certificate chain using resource group, catalog name and certificate name.

az sphere ca-certificate download-chain --resource-group MyResourceGroup --catalog MyCatalog --output-file myCertChain.p7b

az sphere ca-certificate download-proof

Download a proof-of-possession certificate for your catalog for use with a provided code.

Required Parameters

Parameter Description
--name -n The certificate to download. Specify name. If no name is supplied, the active certificate is downloaded. Values from: az sphere ca
--verification-code -v The verification code for the Azure Sphere Security Service to use when generating the certificate.
--output-file -of Path and file name in which to save the certificate. Specify a relative or absolute path.
--catalog -c The Azure Sphere Catalog in which to perform this operation. Specify Azure Sphere Catalog name. You can configure the default Azure Sphere Catalog using az config set defaults.sphere.catalog=<name>. Values from: az sphere catalog list.
--resource-group -r Name of the Azure resource group. You can configure the default group using az config set defaults.group=<name>. Values from: az group list.

Examples

Download a proof-of-possession certificate using resource group and catalog name.

az sphere ca-certificate download-proof --resource-group MyResourceGroup --catalog MyCatalog --name 2E7A0AF370ABC439901BBB37AF38B97 --verification-code 3304517c557a3375e --output-file myCert.cer

Download an active proof-of-possession certificate using resource group, catalog name and certificate name.

az sphere ca-certificate download-proof --resource-group MyResourceGroup --catalog MyCatalog --verification-code 3304517c557a3375e --output-file myCert.cer