Merge pull request #311663 from Jaxelr/patch-3

prmerger-automator[bot] · web-flow · commit e9a9959244e9 · 2026-03-10T14:09:22.000Z
Update commands for Az.ArtifactSigning module
diff --git a/articles/artifact-signing/how-to-sign-ci-policy.md b/articles/artifact-signing/how-to-sign-ci-policy.md
@@ -20,56 +20,56 @@ To complete the steps in this article, you need:
 - An Artifact Signing account, identity validation, and certificate profile.
 - Individual or group assignment of the Artifact Signing Certificate Profile Signer role.
 - [Azure PowerShell in Windows](/powershell/azure/install-azps-windows) installed.
-- [Az.TrustedSigning](/powershell/module/az.trustedsigning/) module downloaded.
+- [Az.ArtifactSigning](/powershell/module/az.artifactsigning/) module downloaded.
 
 ## Sign a CI policy
 
 1. ⁠Open [PowerShell 7](https://github.com/PowerShell/PowerShell/releases/latest).
 
-1. Optionally, you can create a *metadata.json* file that looks like this example:(`"Endpoint"` URI value must be a URI that aligns with the region where you created your Artifact Signing account and certificate profile when you set up these resources.)
+1. Optionally, you can create a *metadata.json* file that looks like this example: (`"Endpoint"` URI value must be a URI that matches the region where you created your Artifact Signing account and certificate profile when you set up these resources.)
 
    ```json
    {
    "Endpoint":"https://xxx.codesigning.azure.net/",
-   "CodeSigningAccountName":"<Artifact Signing Account Name>",
+   "CodeSigningAccountName":"<Signing Account Name>",
    "CertificateProfileName":"<Certificate Profile Name>"
    }
    ```
 
-1. Get the [root certificate](/powershell/module/az.trustedsigning/get-aztrustedsigningcertificateroot) that you want to add to the trust store:
+1. Get the [root certificate](/powershell/module/az.artifactsigning/get-azartifactsigningcertificateroot?view=azps-15.4.0&preserve-view=true) that you want to add to the trust store:
 
    ```powershell
-   Get-AzTrustedSigningCertificateRoot -AccountName TestAccount -ProfileName TestCertProfile -EndpointUrl https://xxx.codesigning.azure.net/ -Destination c:\temp\root.cer
+   Get-AzArtifactSigningCertificateRoot -AccountName TestAccount -ProfileName TestCertProfile -EndpointUrl https://xxx.codesigning.azure.net/ -Destination c:\temp\root.cer
    ```
 
    If you're using a *metadata.json* file, run this command instead:
 
    ```powershell
-   Get-AzTrustedSigningCertificateRoot -MetadataFilePath C:\temp\metadata.json -Destination c:\temp\root.cer 
+   Get-AzArtifactSigningCertificateRoot -MetadataFilePath C:\temp\metadata.json -Destination c:\temp\root.cer 
    ```
 
-1. To get the [Extended Key Usage (EKU)](/powershell/module/az.trustedsigning/get-aztrustedsigningcustomereku) to insert into your policy:
+1. To get the [Extended Key Usage (EKU)](/powershell/module/az.artifactsigning/get-azartifactsigningcustomereku?view=azps-15.4.0&preserve-view=true) to insert into your policy:
 
    ```powershell
-   Get-AzTrustedSigningCustomerEku -AccountName TestAccount -ProfileName TestCertProfile -EndpointUrl https://xxx.codesigning.azure.net/ 
+   Get-AzArtifactSigningCustomerEku -AccountName TestAccount -ProfileName TestCertProfile -EndpointUrl https://xxx.codesigning.azure.net/ 
    ```
 
    If you're using a *metadata.json* file, run this command instead:
 
    ```powershell
-   Get-AzTrustedSigningCustomerEku -MetadataFilePath C:\temp\metadata.json 
+   Get-AzArtifactSigningCustomerEku -MetadataFilePath C:\temp\metadata.json 
    ```
 
-1. To [sign your policy](/powershell/module/az.trustedsigning/invoke-aztrustedsigningcipolicysigning), run the `invoke` command:
+1. To [sign your policy](/powershell/module/az.artifactsigning/invoke-azartifactsigningcipolicysigning?view=azps-15.4.0&preserve-view=true), run the `invoke` command:
 
    ```powershell
-   Invoke-AzTrustedSigningCIPolicySigning -accountName TestAccount -profileName TestCertProfile -endpointurl "https://xxx.codesigning.azure.net/" -Path C:\Temp\defaultpolicy.bin -Destination C:\Temp\defaultpolicy_signed.bin -TimeStamperUrl: http://timestamp.acs.microsoft.com 
+   Invoke-AzArtifactSigningCIPolicySigning -accountName TestAccount -profileName TestCertProfile -endpointurl "https://xxx.codesigning.azure.net/" -Path C:\Temp\defaultpolicy.bin -Destination C:\Temp\defaultpolicy_signed.bin -TimeStamperUrl: http://timestamp.acs.microsoft.com 
    ```
 
    If you're using a *metadata.json* file, run this command instead:
 
    ```powershell
-   Invoke-AzTrustedSigningCIPolicySigning -MetadataFilePath C:\temp\metadata.json -Path C:\Temp\defaultpolicy.bin -Destination C:\Temp\defaultpolicy_signed.bin -TimeStamperUrl: http://timestamp.acs.microsoft.com 
+   Invoke-AzArtifactSigningCIPolicySigning -MetadataFilePath C:\temp\metadata.json -Path C:\Temp\defaultpolicy.bin -Destination C:\Temp\defaultpolicy_signed.bin -TimeStamperUrl: http://timestamp.acs.microsoft.com 
    ```
 
 ## Create and deploy a CI policy
