Merge pull request #9170 from MicrosoftDocs/mints-moble-cert-updates

cert creation and signing updates

Author: mduelae

powerapps-docs/maker/common/wrap/code-sign-android.md

@@ -54,7 +54,7 @@ Example:
 
 
 
-- If preparing Keyvault, PATH_TO_KEYSTORE should have .pfx extension.
+- If preparing Key Vault, PATH_TO_KEYSTORE should have .pfx extension.
 
   `keytool -genkey -alias powerappswrap -keyalg RSA -keystore powerappswrap.pfx -keysize 2048 -validity 10000`
 

powerapps-docs/maker/common/wrap/code-sign-ios.md

@@ -175,7 +175,7 @@ To create a distribution certificate, create a new certificate signing request f
 1. If signing with enterprise certificate, open the **Distribution-exportOptions.plist** file. Open the folder with Xcode and change the value for the **method** field inside the file to **enterprise**.
 
   > [!NOTE]
-  > Enterprise signing is not supported with Keyvault signing.
+  > Enterprise signing is not supported with Key Vault signing.
 
 1. Open terminal, and change directory to the unzipped folder.
 

powerapps-docs/maker/common/wrap/create-key-vault-for-code-signing.md

@@ -1,6 +1,6 @@
 ---
-title: Create key vault for code signing
-description:  Learn how to create Azure key vault for automated code signing of native mobile apps in wrap wizard.
+title: Create Key Vault for code signing
+description:  Learn how to create Azure Key Vault for automated code signing of native mobile apps in wrap wizard.
 author: makolomi
 ms.topic: article
 ms.custom: canvas
@@ -13,12 +13,12 @@ search.audienceType:
 contributors:
   - mkaur-msft
 ---
-# Create Azure key vault for wrap in Power Apps
+# Create Azure Key Vault for wrap in Power Apps
 
-In order to automatically, sign your Android or iOS mobile app package during  [Step 2](wrap-how-to.md#step-2-target-platform) of the wrap wizard, it's necessary to have Azure Key Vault configured. Azure Key Vault is a cloud-based service designed to provide a secure storage solution for secrets, which can include certificates, passwords, keys, and other sensitive information. To learn more about Azure Key Vault, see [Introduction to Azure key vault](/azure/key-vault/general/overview).
+In order to automatically, sign your Android or iOS mobile app package during  [Step 2](wrap-how-to.md#step-2-target-platform) of the wrap wizard, it's necessary to have Azure Key Vault configured. Azure Key Vault is a cloud-based service designed to provide a secure storage solution for secrets, which can include certificates, passwords, keys, and other sensitive information. To learn more about Azure Key Vault, see [Introduction to Azure Key Vault](/azure/key-vault/general/overview).
 
 
-In this article, you will learn how to use an existing Azure key vault or create a new [Azure portal](https://portal.azure.com).
+In this article, you will learn how to use an existing Azure Key Vault or create a new [Azure portal](https://portal.azure.com).
 
 ## Prerequisites
 
@@ -28,15 +28,15 @@ In this article, you will learn how to use an existing Azure key vault or create
 - Create a [distribution certificate](code-sign-ios.md#create-the-distribution-certificate) or [ad-hoc Provisioning Profile](code-sign-ios.md#create-an-ios-provisioning-profile) or enterprise provisioning profile.
 
 
-## Create Azure key vault and configure KeyVault URI
+## Create Azure Key Vault and configure Key Vault URI
 
 1. To create a new Azure service principal for the 1P Microsoft Entra application **4e1f8dc5-5a42-45ce-a096-700fa485ba20 (WrapKeyVaultAccessApp)**, sign in to your tenant as an admin. Then, run the following script in PowerShell:
 
     `Connect-AzureAD -TenantId <your tenant ID>`<br>
    `New-AzureADServicePrincipal -AppId 4e1f8dc5-5a42-45ce-a096-700fa485ba20 -DisplayName "Wrap KeyVault Access App"`
 
 
-2. Follow these steps to ensure that the Service Principal representing your app, such as Wrap KeyVault Access App, has the necessary access permissions, add a **Reader** role assignment to it in the **Access Control (IAM)** of your default subscription. This should also be present in the IAM of both the subscription and the Keyvault.
+2. Follow these steps to ensure that the Service Principal representing your app, such as Wrap Key Vault Access App, has the necessary access permissions, add a **Reader** role assignment to it in the **Access Control (IAM)** of your default subscription. This should also be present in the IAM of both the subscription and the Key Vault.
 
    1. On the left select **Access control (IAM)** tab and then select **Add** > **Add role assignment**.
 
@@ -45,26 +45,26 @@ In this article, you will learn how to use an existing Azure key vault or create
        > [!div class="mx-imgBorder"] 
        > ![Select the Members tab.](media/how-to-v2/Add_members.png "Select the Members tab.")
 
-   4. On **Members** tab, select **Select member** and in the text box on the right enter **Wrap KeyVault Access App** and search for it.
+   4. On **Members** tab, select **Select member** and in the text box on the right enter **Wrap Key Vault Access App** and search for it.
 
        > [!div class="mx-imgBorder"] 
-       > ![Search for Wrap KeyVault Access App.](media/how-to-v2/Add_role_assignment.png "Search for Wrap KeyVault Access App.")
+       > ![Search for Wrap Key Vault Access App.](media/how-to-v2/Add_role_assignment.png "Search for Wrap Key Vault Access App.")
 
-   5. Select **Wrap KeyVault Access App** and then select **Review + assign** to assign the **Reader** role.
+   5. Select **Wrap Key Vault Access App** and then select **Review + assign** to assign the **Reader** role.
 
        > [!div class="mx-imgBorder"] 
        > ![Assign Reader role to Wrap KeyVault Access App.](media/how-to-v2/Add_role_for_wrap_signing.png "Assign Reader role to Wrap KeyVault Access App.")
 
 
-3. Create or access existing key vault. Make sure this key vault is located in the default subscription for your tenant. More information: [Create a key vault using the Azure portal](/azure/key-vault/general/quick-create-portal).
+3. Create or access existing Key Vault. Make sure this Key Vault is located in the default subscription for your tenant. More information: [Create a key vault using the Azure portal](/azure/key-vault/general/quick-create-portal).
 
-4. Add access policies for the key vault.
+4. Add access policies for the Key Vault.
 
 5. Choose one of the following options based on your device:
 
      - **Android**
 
-       Generate the .pfx file and then proceed to upload it to the certificate section of the keyvault. More information: [Generate keys](code-sign-android.md#generate-keys) 
+       Generate the .pfx file and then proceed to upload it to the certificate section of the Key Vault. More information: [Generate keys](code-sign-android.md#generate-keys) 
 
        :::image type="content" source="media/wrap-canvas-app/wrap-1.png" alt-text="Create a cert for Android.":::
 
@@ -73,16 +73,17 @@ In this article, you will learn how to use an existing Azure key vault or create
   
      - **iOS** 
        1. Select the .cer into Keychain Access app to install it. For more information, see [Create the distribution certificate](code-sign-ios.md#create-the-distribution-certificate).
-       2. Right-click your certificate file to export the file as a .p12 file, select **Export**, and then select the file format .p12. 
+       2. Right-click your certificate file to export the file as a .p12 file, select **Export**, and then select the file format .p12.
+       3. The iOS Certificate extension (.p12) should be renamed to **.pfx** as it is the accepted format by Key Vault
 
          > [!NOTE]
-         > When you upload to the keyvault, you'll need to provide the password that you set in previous step for the .p12 file.
+         > When you upload to the Key Vault, you'll need to provide the password that you set in previous step for the .p12 file.
         
        3. [Create the provisioning profile](code-sign-ios.md#create-an-ios-provisioning-profile) and run this command to encode it to base64:
           - Mac: base64 `-i example.mobileprovision`
           - Windows:  `certutil -encode data.txt tmp.b64`
 
-       4. Upload the `base64` string obtained from the previous step to the Keyvault secret. Next, upload the .p12 file to Keyvault Certificate.
+       4. Upload the `base64` string obtained from the previous step to the Key Vault secret. Next, upload the .p12 file to Key Vault Certificate.
 
 
           :::image type="content" source="media/wrap-canvas-app/wrap-2.png" alt-text="Create a cert for iOS.":::
@@ -102,4 +103,4 @@ For Troubleshooting issues, see [Troubleshoot issues with the wrap feature in Po
 - [Code sign for iOS](code-sign-ios.md)
 - [Code sign for Android](code-sign-android.md)
 - [Code sign for Google Play Store](https://developer.android.com/studio/publish/app-signing)
-- [Frequently asked questions for wrap](faq.yml)
+- [Frequently asked questions for wrap](faq.yml)

powerapps-docs/maker/common/wrap/faq.yml

@@ -41,7 +41,7 @@ sections:
       - question: |
           How do I digitally sign my mobile app?
         answer: |
-          You can automatically sign your mobile app package in **Step 2: Target Platforms** step in wrap wizard. You will need to [create and prepare your Azure key vault](create-key-vault-for-code-signing.md) to take advantage of automatic mobile app signing feature in wrap wizard. For information on how to code sign your app manually, see instructions here: [Android](code-sign-android.md), [iOS](code-sign-ios.md) and [Google Play Store](https://developer.android.com/studio/publish/app-signing).
+          You can automatically sign your mobile app package in **Step 2: Target Platforms** step in wrap wizard. You will need to [create and prepare your Azure Key Vault](create-key-vault-for-code-signing.md) to take advantage of automatic mobile app signing feature in wrap wizard. For information on how to code sign your app manually, see instructions here: [Android](code-sign-android.md), [iOS](code-sign-ios.md) and [Google Play Store](https://developer.android.com/studio/publish/app-signing).
           
       - question: |
           Can I use Xcode to digitally sign my mobile apps for iOS?

powerapps-docs/maker/common/wrap/media/wrap-canvas-app/wrap-2.png

@@ -150,5 +150,5 @@ Optional additional canvas apps that you're wrapping in the same build for mobil
 - [Code sign on iOS](code-sign-ios.md)
 - [Code sign on Android](code-sign-Android.md)
 - [Code sign for Google Play Store](https://developer.android.com/studio/publish/app-signing)
-- [Create your Azure key vault for automated code signing](create-key-vault-for-code-signing.md)
+- [Create your Azure Key Vault for automated code signing](create-key-vault-for-code-signing.md)
 - [Frequently Asked Questions](faq.yml)

powerapps-docs/maker/common/wrap/overview.md

@@ -7,7 +7,7 @@ ms.custom: canvas
 ms.reviewer: mkaur
 ms.date: 2/9/2023
 ms.subservice: canvas-maker
-ms.author: makolomi
+ms.author: clromano
 search.audienceType: 
   - maker
 contributors:
@@ -90,7 +90,7 @@ More information: [Add an app to a solution](../../canvas-apps/add-app-solution.
 2. Under **Target platforms(s)**, select all the mobile platforms that your end users use on their mobile devices.
 
 3. Set the **Sign my app** toggle to **ON** to automatically code sign your mobile app, then select the **Azure Key Vault URI** from the list and click **Next**. 
-If you don't have any entries in **Azure Key Vault URI** list, you need to create **Azure Key Vault** first. More information: [Create Azure key valut for wrap for Power Apps](create-key-vault-for-code-signing.md).
+If you don't have any entries in **Azure Key Vault URI** list, you need to create **Azure Key Vault** first. More information: [Create Azure Key Vault for wrap for Power Apps](create-key-vault-for-code-signing.md).
 
      > [!div class="mx-imgBorder"] 
      > ![Choose the apps which you want to wrap.](media/how-to-v2/select-target-platforms.png "Select target platforms")
@@ -258,5 +258,5 @@ You can automatically sign your mobile app package during wrap process in **Step
 - [Code sign for iOS](code-sign-ios.md)
 - [Code sign for Android](code-sign-android.md)
 - [Code sign for Google Play Store](https://developer.android.com/studio/publish/app-signing)
-- [Create your Azure key vault for automated code signing](create-key-vault-for-code-signing.md)
-- [Frequently asked questions for wrap](faq.yml)
+- [Create your Azure Key Vault for automated code signing](create-Key-Vault-for-code-signing.md)
+- [Frequently asked questions for wrap](faq.yml)