Ignore SSL warning with powershell downloadstring
With the one-liner you don't have many options in ignoring the SSL-warning (with the WebClient downloadstring method).
You could try doing this before invoking the command :
[System.Net.ServicePointManager]::ServerCertificateValidationCallback = {$true} ;
Since you're using this in a task-scheduler, I'd add it before the DownloadString command with a ';' to seperate the two commands.
This should do the trick, which would set the callback in the session:
-ExecutionPolicy unrestricted -Command "[System.Net.ServicePointManager]::ServerCertificateValidationCallback = {$true};(New-Object Net.WebClient).DownloadString(\"127.0.0.1/xxx\")"
If you have a newer Powershell installation (check if you have the invoke-webrequest cmdlet available), you can use this cmdlet in addtion to a security policy. Still not a one-liner, but this should do the trick :
add-type @"
using System.Net;
using System.Security.Cryptography.X509Certificates;
public class TrustAllCertsPolicy : ICertificatePolicy {
public bool CheckValidationResult(
ServicePoint srvPoint, X509Certificate certificate,
WebRequest request, int certificateProblem) {
return true;
}
}
"@
[System.Net.ServicePointManager]::CertificatePolicy = New-Object TrustAllCertsPolicy
$result = Invoke-WebRequest -Uri ""https://127.0.0.1/xxx"
Try to see if that works from a normal host, if so, you could bundle it in a simple script and use this in your scheduled task.
If you're looking to implement a conditional policy, use the following.
[System.Net.ServicePointManager]::ServerCertificateValidationCallback = {
param(
[object]$sender,
[Security.Cryptography.X509Certificates.X509Certificate] $certificate,
[Security.Cryptography.X509Certificates.X509Chain] $chain,
[Net.Security.SslPolicyErrors] $sslPolicyErrors
)
# Implement your custom logic here
$true
}