kfosaaen/ProtectedSettingsDump.sh

## ProtectedSettingsDump.sh
#!/bin/bash

# Find all ".settings" files in "/var/lib/waagent/" subdirectories
find /var/lib/waagent/ -type f -name "*.settings" -print0 | while IFS= read -r -d $'\0' file; do
	thumbprint=$(jq -r '.runtimeSettings[].handlerSettings.protectedSettingsCertThumbprint' $file)
	protectedSettingsDecrypted=$(jq -r '.runtimeSettings[].handlerSettings.protectedSettings' $file | base64 --decode | openssl smime -inform DER -decrypt -recip /var/lib/waagent/$thumbprint.crt -inkey /var/lib/waagent/$thumbprint.prv | jq .)

	echo "File: $file"
	echo "Public Settings: $publicSettings"
	echo "Decrypted Protected Settings: $protectedSettingsDecrypted"
	echo "--------------------------------------------"
done
	#!/bin/bash

	# Find all ".settings" files in "/var/lib/waagent/" subdirectories
	find /var/lib/waagent/ -type f -name "*.settings" -print0 \| while IFS= read -r -d $'\0' file; do
	thumbprint=$(jq -r '.runtimeSettings[].handlerSettings.protectedSettingsCertThumbprint' $file)
	protectedSettingsDecrypted=$(jq -r '.runtimeSettings[].handlerSettings.protectedSettings' $file \| base64 --decode \| openssl smime -inform DER -decrypt -recip /var/lib/waagent/$thumbprint.crt -inkey /var/lib/waagent/$thumbprint.prv \| jq .)

	echo "File: $file"
	echo "Public Settings: $publicSettings"
	echo "Decrypted Protected Settings: $protectedSettingsDecrypted"
	echo "--------------------------------------------"
	done