{"id":26555,"date":"2018-07-26T14:06:00","date_gmt":"2018-07-26T14:06:00","guid":{"rendered":"https:\/\/blogs.msdn.microsoft.com\/premier_developer\/?p=26555"},"modified":"2019-02-14T20:17:56","modified_gmt":"2019-02-15T03:17:57","slug":"accessing-certificates-in-service-fabric-hosted-windows-containers","status":"publish","type":"post","link":"https:\/\/devblogs.microsoft.com\/premier-developer\/accessing-certificates-in-service-fabric-hosted-windows-containers\/","title":{"rendered":"Accessing Certificates in Service Fabric Hosted Windows Containers"},"content":{"rendered":"<p>In this post, senior consultant <a href=\"https:\/\/www.linkedin.com\/in\/megankmeyer\/\">Megan Meyer<\/a> demonstrates how you can utilize SetupEntryPoint scripts to manage acquiring certificates and making them available to your Service Fabric hosted container.<\/p>\n<hr \/>\n<p><a href=\"https:\/\/devblogs.microsoft.com\/wp-content\/uploads\/sites\/31\/2019\/04\/publish-to-azurecluster.jpg\"><img decoding=\"async\" style=\"margin: 0px 0px 0px 10px;float: right\" title=\"publish-to-azurecluster\" src=\"https:\/\/devblogs.microsoft.com\/wp-content\/uploads\/sites\/31\/2019\/04\/publish-to-azurecluster_thumb.jpg\" alt=\"publish-to-azurecluster\" width=\"244\" height=\"205\" align=\"right\" border=\"0\" \/><\/a>Azure Service Fabric is a great platform for container orchestration. It provides a full suite of features to ensure that your container is held up by the five pillars of software quality&#8211; ensuring scalability, availability, resiliency, management, and security. Assuming your containerized application may need access to certificates to handle encryption, decryption, signing, or verification, Service Fabric even provides a built-in way to expose certificates installed in the LocalMachine store to the container by using a <code>ContainerHostPolicy<\/code>. You can also explicitly provide certificate files as part of the Data Package. Both approaches are documented well in the use a certificate in a container topic in the docs. What if you need more control over the certificates? What if they&#8217;re not installed on the node and you need to dynamically make them available to your container at the time of service startup? What actually needs to happen in the <code>setupentrypoint.sh<\/code> script?<\/p>\n<p><a href=\"http:\/\/blog.awkward.industries\/2018\/06\/certificates-service-fabric-containers.html\">Continue reading on Megan\u2019s blog.<\/a><\/p>\n<hr \/>\n<p><a href=\"https:\/\/blogs.msdn.com\/b\/premier_developer\/archive\/2014\/09\/15\/welcome.aspx\"><strong>Premier Support for Developers<\/strong><\/a> provides strategic technology guidance, critical support coverage, and a range of essential services to help teams optimize development lifecycles and improve software quality. Contact your Application Development Manager (ADM) or <a href=\"https:\/\/blogs.msdn.microsoft.com\/premier_developer\/contact-us\/\">email us<\/a> to learn more about what we can do for you.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>In this post, senior consultant Megan Meyer demonstrates how you can utilize SetupEntryPoint scripts to manage acquiring certificates and making them available to your Service Fabric hosted container.  This blog covers an approach that allows greater control and flexibility at the time of service setup so that you can have runtime access to certificate files within your container.<\/p>\n","protected":false},"author":582,"featured_media":27428,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[25],"tags":[24,2,31,3],"class_list":["post-26555","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-azure","tag-azure","tag-containers","tag-service-fabric","tag-team"],"acf":[],"blog_post_summary":"<p>In this post, senior consultant Megan Meyer demonstrates how you can utilize SetupEntryPoint scripts to manage acquiring certificates and making them available to your Service Fabric hosted container.  This blog covers an approach that allows greater control and flexibility at the time of service setup so that you can have runtime access to certificate files within your container.<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/posts\/26555","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/users\/582"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/comments?post=26555"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/posts\/26555\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/media\/27428"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/media?parent=26555"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/categories?post=26555"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/premier-developer\/wp-json\/wp\/v2\/tags?post=26555"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}