bender-the-greatest · September 17, 2020 13:34
diff --git a/Trust-AllCerts.ps1 b/Trust-AllCerts.ps1
 # DISCLAIMER - This is provided as a method to interface with HTTPS endpoints configured
 # with an invalid certificate as is common during the development process. This is not 
 # intended or recommended to be used in a production scenario for obvious security reasons.
 #
 # Also, I did not write the C# code. Props to kd0shk and the Powershell subreddit for the C# snippet.

 # Both of these approaches won't work in PowerShell core and is not required as built-in
 # request cmdlets now have the -SkipCertificateCheck parameter
 # (e.g. Invoke-WebRequest -SkipCertificateCheck https://server.withbadcert.domain.tld)

 # Compile the required C# code to create a custom certificate policy
 add-type @"
    using System.Net;
    using System.Security.Cryptography.X509Certificates;
    public class TrustAllCertsPolicy : ICertificatePolicy {
        public bool CheckValidationResult(
            ServicePoint srvPoint, X509Certificate certificate,
            WebRequest request, int certificateProblem) {
            return true;
        }
    }
 "@

 # You can also define a PowerShell class for this with PowerShell 5.0 and later
 class TrustAllCertsPolicy : System.Net.ICertificatePolicy {
  [bool] CheckValidationResult(
    [System.Net.ServicePoint]$srvPoint, [System.Security.Cryptography.X509Certificates.X509Certificate]$certificate,
    [System.Net.WebRequest]$request, [int]$certificateProblem
  ) {
    return $true
  }
 }

 # Set the CertificatePolicy to our new TrustAllCertsPolicy we compiled above.
 # Note that this is a GLOBAL setting. It is prudent to save off the old value
 # and re-set it after you invoke a web request against any endpoints known to
 # be using invalid certs. Otherwise, all subsequent web requests made in that
 # Powershell session will skip certificate validation
 [System.Net.ServicePointManager]::CertificatePolicy = New-Object TrustAllCertsPolicy
	# DISCLAIMER - This is provided as a method to interface with HTTPS endpoints configured
	# with an invalid certificate as is common during the development process. This is not
	# intended or recommended to be used in a production scenario for obvious security reasons.
	#
	# Also, I did not write the C# code. Props to kd0shk and the Powershell subreddit for the C# snippet.

	# Both of these approaches won't work in PowerShell core and is not required as built-in
	# request cmdlets now have the -SkipCertificateCheck parameter
	# (e.g. Invoke-WebRequest -SkipCertificateCheck https://server.withbadcert.domain.tld)

	# Compile the required C# code to create a custom certificate policy
	add-type @"
	using System.Net;
	using System.Security.Cryptography.X509Certificates;
	public class TrustAllCertsPolicy : ICertificatePolicy {
	public bool CheckValidationResult(
	ServicePoint srvPoint, X509Certificate certificate,
	WebRequest request, int certificateProblem) {
	return true;
	}
	}
	"@

	# You can also define a PowerShell class for this with PowerShell 5.0 and later
	class TrustAllCertsPolicy : System.Net.ICertificatePolicy {
	[bool] CheckValidationResult(
	[System.Net.ServicePoint]$srvPoint, [System.Security.Cryptography.X509Certificates.X509Certificate]$certificate,
	[System.Net.WebRequest]$request, [int]$certificateProblem
	) {
	return $true
	}
	}

	# Set the CertificatePolicy to our new TrustAllCertsPolicy we compiled above.
	# Note that this is a GLOBAL setting. It is prudent to save off the old value
	# and re-set it after you invoke a web request against any endpoints known to
	# be using invalid certs. Otherwise, all subsequent web requests made in that
	# Powershell session will skip certificate validation
	[System.Net.ServicePointManager]::CertificatePolicy = New-Object TrustAllCertsPolicy