Set Powershell to skip SSL certificate checks

If you are trying to query a web site and you have invalid SSL certificates, Powershell is by default very strict on what it accepts. You will often end up with errors like:

Invoke-WebRequest : The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.


Invoke-WebRequest : The request was aborted: Could not create SSL/TLS secure channel.

When you try to use Invoke-WebRequest or Invoke-RestMethod on a web URL with old or insecure certificates or CAs. Example:

PS C:\Users\CorrM1> Invoke-WebRequest -Uri https://badwebsite.with.crap.certs:1943/application/service

To get around this, try running the script fragment below before you make your remote calls.

This performs bypasses for the certificate issues.

add-type @"
    using System.Net;
    using System.Security.Cryptography.X509Certificates;
    public class TrustAllCertsPolicy : ICertificatePolicy {
        public bool CheckValidationResult(
            ServicePoint srvPoint, X509Certificate certificate,
            WebRequest request, int certificateProblem) {
            return true;
[System.Net.ServicePointManager]::CertificatePolicy = New-Object TrustAllCertsPolicy

[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Ssl3, [Net.SecurityProtocolType]::Tls, [Net.SecurityProtocolType]::Tls11, [Net.SecurityProtocolType]::Tls12

results matching ""

    No results matching ""