Merge pull request #83 from Keyfactor/ab#72413

doebrowsk · web-flow · commit b8740f529742 · 2025-06-17T09:25:43.000-05:00
Ab#72413
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,9 @@
+v2.11.3
+- Change returned result of a Management-Create job for a store that already exists from 'Failure' to 'Warning'
+
+v2.11.2
+- Documentation updates
+
 v2.11.1
 - Bug Fix: added ability to set SSH port when managing Linux servers to Discovery jobs
 - Added "@" as a valid character for Linux file paths
diff --git a/README.md b/README.md
@@ -158,15 +158,15 @@ Please consult with your system administrator for more information on configurin
 
 ## Certificate Store Types
 
-To use the Remote File Universal Orchestrator extension, you **must** create the Certificate Store Types required for your usecase. This only needs to happen _once_ per Keyfactor Command instance.
+To use the Remote File Universal Orchestrator extension, you **must** create the Certificate Store Types required for your use-case. This only needs to happen _once_ per Keyfactor Command instance.
 
 The Remote File Universal Orchestrator extension implements 6 Certificate Store Types. Depending on your use case, you may elect to use one, or all of these Certificate Store Types.
 
 ### RFJKS
 
-
 <details><summary>Click to expand details</summary>
 
+
 The `RFJKS` store type can be used to manage java keystores of types `JKS` or `PKCS12`.  If creating a new java keystore 
 and adding a certificate all via Keyfactor Command, the created java keystore will be of type `PKCS12`, as java keystores 
 of type `JKS` have been deprecated as of `JDK 9`.
@@ -177,6 +177,8 @@ of type `JKS` have been deprecated as of `JDK 9`.
 3. A mix of trust and key entries.
 
 
+
+
 #### Supported Operations
 
 | Operation    | Is Supported                                                                                                           |
@@ -190,7 +192,7 @@ of type `JKS` have been deprecated as of `JDK 9`.
 #### Store Type Creation
 
 ##### Using kfutil:
-`kfutil` is a custom CLI for the Keyfactor Command API and can be used to created certificate store types.
+`kfutil` is a custom CLI for the Keyfactor Command API and can be used to create certificate store types.
 For more information on [kfutil](https://github.com/Keyfactor/kfutil) check out the [docs](https://github.com/Keyfactor/kfutil?tab=readme-ov-file#quickstart)
    <details><summary>Click to expand RFJKS kfutil details</summary>
 
@@ -271,15 +273,14 @@ the Keyfactor Command Portal
 
    ![RFJKS Custom Fields Tab](docsource/images/RFJKS-custom-fields-store-type-dialog.png)
 
-
    </details>
 </details>
 
 ### RFPEM
 
-
 <details><summary>Click to expand details</summary>
 
+
 The `RFPEM` store type can be used to manage `PEM` encoded files.
 
 #### Supported use cases
@@ -295,6 +296,8 @@ The `RFPEM` store type can be used to manage `PEM` encoded files.
 - Store password *MUST* be set to `No Password` if managing a store with a `PKCS#1` private key, as encrypted `PKCS#1` keys are not supported with this integration.
 
 
+
+
 #### Supported Operations
 
 | Operation    | Is Supported                                                                                                           |
@@ -308,7 +311,7 @@ The `RFPEM` store type can be used to manage `PEM` encoded files.
 #### Store Type Creation
 
 ##### Using kfutil:
-`kfutil` is a custom CLI for the Keyfactor Command API and can be used to created certificate store types.
+`kfutil` is a custom CLI for the Keyfactor Command API and can be used to create certificate store types.
 For more information on [kfutil](https://github.com/Keyfactor/kfutil) check out the [docs](https://github.com/Keyfactor/kfutil?tab=readme-ov-file#quickstart)
    <details><summary>Click to expand RFPEM kfutil details</summary>
 
@@ -393,15 +396,14 @@ the Keyfactor Command Portal
 
    ![RFPEM Custom Fields Tab](docsource/images/RFPEM-custom-fields-store-type-dialog.png)
 
-
    </details>
 </details>
 
 ### RFPkcs12
 
-
 <details><summary>Click to expand details</summary>
 
+
 The `RFPkcs12` store type can be used to manage any `PKCS#12` compliant file format INCLUDING java keystores of type `PKCS12`.
 
 #### Supported use cases
@@ -415,6 +417,8 @@ The `RFPkcs12` store type can be used to manage any `PKCS#12` compliant file for
 2. Multiple key and/or trust entries with blank friendly names/aliases
 
 
+
+
 #### Supported Operations
 
 | Operation    | Is Supported                                                                                                           |
@@ -428,7 +432,7 @@ The `RFPkcs12` store type can be used to manage any `PKCS#12` compliant file for
 #### Store Type Creation
 
 ##### Using kfutil:
-`kfutil` is a custom CLI for the Keyfactor Command API and can be used to created certificate store types.
+`kfutil` is a custom CLI for the Keyfactor Command API and can be used to create certificate store types.
 For more information on [kfutil](https://github.com/Keyfactor/kfutil) check out the [docs](https://github.com/Keyfactor/kfutil?tab=readme-ov-file#quickstart)
    <details><summary>Click to expand RFPkcs12 kfutil details</summary>
 
@@ -509,22 +513,23 @@ the Keyfactor Command Portal
 
    ![RFPkcs12 Custom Fields Tab](docsource/images/RFPkcs12-custom-fields-store-type-dialog.png)
 
-
    </details>
 </details>
 
 ### RFDER
 
-
 <details><summary>Click to expand details</summary>
 
+
 The `RFDER` store type can be used to manage DER encoded files.
 
 #### Supported use cases
 1. Single certificate stores with private key in an external file.
 2. Single certificate stores with no private key.
 
 
+
+
 #### Supported Operations
 
 | Operation    | Is Supported                                                                                                           |
@@ -538,7 +543,7 @@ The `RFDER` store type can be used to manage DER encoded files.
 #### Store Type Creation
 
 ##### Using kfutil:
-`kfutil` is a custom CLI for the Keyfactor Command API and can be used to created certificate store types.
+`kfutil` is a custom CLI for the Keyfactor Command API and can be used to create certificate store types.
 For more information on [kfutil](https://github.com/Keyfactor/kfutil) check out the [docs](https://github.com/Keyfactor/kfutil?tab=readme-ov-file#quickstart)
    <details><summary>Click to expand RFDER kfutil details</summary>
 
@@ -620,15 +625,14 @@ the Keyfactor Command Portal
 
    ![RFDER Custom Fields Tab](docsource/images/RFDER-custom-fields-store-type-dialog.png)
 
-
    </details>
 </details>
 
 ### RFKDB
 
-
 <details><summary>Click to expand details</summary>
 
+
 The `RFKDB` store type can be used to manage IBM Key Database Files (`KDB`) files.  The IBM utility, `GSKCAPICMD`, is used 
 to read and write certificates from and to the target store and is therefore required to be installed on the server where 
 each `KDB` certificate store being managed resides, and its location MUST be in the system `$Path`.
@@ -639,6 +643,8 @@ each `KDB` certificate store being managed resides, and its location MUST be in
 3. A mix of trust and key entries.
 
 
+
+
 #### Supported Operations
 
 | Operation    | Is Supported                                                                                                           |
@@ -652,7 +658,7 @@ each `KDB` certificate store being managed resides, and its location MUST be in
 #### Store Type Creation
 
 ##### Using kfutil:
-`kfutil` is a custom CLI for the Keyfactor Command API and can be used to created certificate store types.
+`kfutil` is a custom CLI for the Keyfactor Command API and can be used to create certificate store types.
 For more information on [kfutil](https://github.com/Keyfactor/kfutil) check out the [docs](https://github.com/Keyfactor/kfutil?tab=readme-ov-file#quickstart)
    <details><summary>Click to expand RFKDB kfutil details</summary>
 
@@ -733,15 +739,14 @@ the Keyfactor Command Portal
 
    ![RFKDB Custom Fields Tab](docsource/images/RFKDB-custom-fields-store-type-dialog.png)
 
-
    </details>
 </details>
 
 ### RFORA
 
-
 <details><summary>Click to expand details</summary>
 
+
 The `RFORA` store type can be used to manage `PKCS12` Oracle Wallets. 
 
 > NOTE: This should work for `PKCS12` Oracle Wallets installed on both Windows and Linux servers, this has only been tested on wallets installed on Windows.  
@@ -753,6 +758,8 @@ The `RFORA` store type can be used to manage `PKCS12` Oracle Wallets.
 3. A mix of trust and key entries.
 
 
+
+
 #### Supported Operations
 
 | Operation    | Is Supported                                                                                                           |
@@ -766,7 +773,7 @@ The `RFORA` store type can be used to manage `PKCS12` Oracle Wallets.
 #### Store Type Creation
 
 ##### Using kfutil:
-`kfutil` is a custom CLI for the Keyfactor Command API and can be used to created certificate store types.
+`kfutil` is a custom CLI for the Keyfactor Command API and can be used to create certificate store types.
 For more information on [kfutil](https://github.com/Keyfactor/kfutil) check out the [docs](https://github.com/Keyfactor/kfutil?tab=readme-ov-file#quickstart)
    <details><summary>Click to expand RFORA kfutil details</summary>
 
@@ -848,7 +855,6 @@ the Keyfactor Command Portal
 
    ![RFORA Custom Fields Tab](docsource/images/RFORA-custom-fields-store-type-dialog.png)
 
-
    </details>
 </details>
 
@@ -1027,7 +1033,6 @@ Please refer to the **Universal Orchestrator (remote)** usage section ([PAM prov
 </details>
 
 
-
 > The content in this section can be supplemented by the [official Command documentation](https://software.keyfactor.com/Core-OnPrem/Current/Content/ReferenceGuide/Certificate%20Stores.htm?Highlight=certificate%20store).
 
 
@@ -1135,7 +1140,6 @@ Please refer to the **Universal Orchestrator (remote)** usage section ([PAM prov
 </details>
 
 
-
 > The content in this section can be supplemented by the [official Command documentation](https://software.keyfactor.com/Core-OnPrem/Current/Content/ReferenceGuide/Certificate%20Stores.htm?Highlight=certificate%20store).
 
 
@@ -1235,7 +1239,6 @@ Please refer to the **Universal Orchestrator (remote)** usage section ([PAM prov
 </details>
 
 
-
 > The content in this section can be supplemented by the [official Command documentation](https://software.keyfactor.com/Core-OnPrem/Current/Content/ReferenceGuide/Certificate%20Stores.htm?Highlight=certificate%20store).
 
 
@@ -1337,7 +1340,6 @@ Please refer to the **Universal Orchestrator (remote)** usage section ([PAM prov
 </details>
 
 
-
 > The content in this section can be supplemented by the [official Command documentation](https://software.keyfactor.com/Core-OnPrem/Current/Content/ReferenceGuide/Certificate%20Stores.htm?Highlight=certificate%20store).
 
 
@@ -1437,7 +1439,6 @@ Please refer to the **Universal Orchestrator (remote)** usage section ([PAM prov
 </details>
 
 
-
 > The content in this section can be supplemented by the [official Command documentation](https://software.keyfactor.com/Core-OnPrem/Current/Content/ReferenceGuide/Certificate%20Stores.htm?Highlight=certificate%20store).
 
 
@@ -1539,7 +1540,6 @@ Please refer to the **Universal Orchestrator (remote)** usage section ([PAM prov
 </details>
 
 
-
 > The content in this section can be supplemented by the [official Command documentation](https://software.keyfactor.com/Core-OnPrem/Current/Content/ReferenceGuide/Certificate%20Stores.htm?Highlight=certificate%20store).
 
 
diff --git a/RemoteFile/ManagementBase.cs b/RemoteFile/ManagementBase.cs
@@ -79,7 +79,8 @@ public JobResult ProcessJob(ManagementJobConfiguration config)
                         logger.LogDebug($"BEGIN create Operation for {config.CertificateStoreDetails.StorePath} on {config.CertificateStoreDetails.ClientMachine}.");
                         if (certificateStore.DoesStoreExist())
                         {
-                            throw new RemoteFileException($"Certificate store {config.CertificateStoreDetails.StorePath} already exists.");
+                            logger.LogWarning($"Certificate store {config.CertificateStoreDetails.StorePath} already exists.");
+                            return new JobResult() { Result = OrchestratorJobStatusJobResult.Warning, JobHistoryId = config.JobHistoryId, FailureMessage = $"Certificate store {config.CertificateStoreDetails.StorePath} already exists.  Site {config.CertificateStoreDetails.StorePath} on server {config.CertificateStoreDetails.ClientMachine}" };
                         }
                         else
                         {

Original file line number	Diff line number	Diff line change
`@@ -79,7 +79,8 @@ public JobResult ProcessJob(ManagementJobConfiguration config)`
`79`	`79`	`logger.LogDebug($"BEGIN create Operation for {config.CertificateStoreDetails.StorePath} on {config.CertificateStoreDetails.ClientMachine}.");`
`80`	`80`	`if (certificateStore.DoesStoreExist())`
`81`	`81`	`{`
`82`		`- throw new RemoteFileException($"Certificate store {config.CertificateStoreDetails.StorePath} already exists.");`
	`82`	`+ logger.LogWarning($"Certificate store {config.CertificateStoreDetails.StorePath} already exists.");`
	`83`	`+ return new JobResult() { Result = OrchestratorJobStatusJobResult.Warning, JobHistoryId = config.JobHistoryId, FailureMessage = $"Certificate store {config.CertificateStoreDetails.StorePath} already exists. Site {config.CertificateStoreDetails.StorePath} on server {config.CertificateStoreDetails.ClientMachine}" };`
`83`	`84`	`}`
`84`	`85`	`else`
`85`	`86`	`{`