Last modified at 3/13/2014 5:02 PM by Koen Zomers

Provider Hosted Apps on SharePoint 2013 are awesome. If you don't want to go with an Azure Access Control Service (ACS) subscription in an Office365 tenant, you can use High Trust or Sever-to-Server Apps. There's lots of good documentation about this on the internet already, so I will not go into details on these. If you have set up your SharePoint 2013 Development environment for these Apps and want to explore the good world of Provider Hosted High Trust Apps, you need to set up a trust between most likely your IIS where you will host your Apps and your SharePoint 2013 farm. The below script will do exactly that for you by simply executing the PowerShell.


  • A configured and working SharePoint 2013 farm set up for Apps
  • IIS WebApplication in which you will host your Apps (may be the same IIS as SharePoint runs on)

The script

Download the script

You can just run the script and accept the default values or you can override them and provide your own input. The following arguments are supported:

  • Trustname: name under which the trust will be registered in SharePoint (default is 'Provider Hosted Apps')
  • PfxLocation: location where to store the private key certificate (default is a file called HighTrustAppCert.pfx on your desktop)
  • CerLocation: location where to store the public key certificate (default is a file called LowTrustAppCert.cer on your desktop)
  • PfxPassword: password to use to secure the private key certificate (default is Pass@word1)
  • Force: forces the creation of a new registration overwriting existing certificates and trust registrations (default is no force)
  • NoPause: Will not pause the script when its completed so it can be used in larger script processing (default is that it will pause so you can just right click and run it)

Once it is done running, it will also create a file IssuerID.txt on your desktop where you can find the IssuerID under which the trust was established.


You can also use Get-Help .\CreateTrustForHighTrustApps.ps1 to get help with the usage of this script.