Posted this question on Discord too, so hopefully that’s ok, i think the two have somewhat different audiences.
Over the last few years, I’ve had co-workers teaching me bits and pieces of PowerShell, and I’ve done some stuff in it, mostly very simple. Usually I make a renewed effort after Summit, get a few chapters in, and end up on other things, then the next year I forget everything and start back over at the beginning or close to. I’ve made it to Chapter 9 this year, yay!!
I’m doing the lab, and I’ve gotten the secretmanagement module installed, but have a few questions.
I was trying to decide where to store my secret, and noticed that most of the password stores i’m familiar with are actually more modules by community members in the gallery. Everytime I heard anyone talk about the gallery, they say it’s generally trustworthy, but you should always review anything you get from there. But with my PowerShell knowledge so spotty, I’m not sure I’m capable of that. I’m not even sure exactly what I’m asking? Is the Gallery really almost always trustworthy? How do I go about trying to review things I pull down without breaking my brain? Is there a way to judge based on a creator you’re not familiar with?
So, since I was spinning my wheels there, I decided I’d just try and use something that came with the module. So I started looking at helps and examples and found the Register-SecretVault command. The example for that command is in the attached screenshot. It lists a ‘CredMan’ and a ‘LocalStore’.
I know what the CredMan is so I thought I’d start there, but I noticed that also needed a module: Microsoft.PowerShell.CredManStore, but when I tried to find/install that module I got an error. Is this a thing that doesn’t exist anymore? Or something for Windows PowerShell? I saw there were other CredMan modules, but that led me back to my first question of know what to pick/who to trust?
So that leaves me with LocalStore, which I just want to make sure i understand. Is this just like a little private vault that PS makes up on the spot?
Thanks for any help.