CERT_BASIC_CONSTRAINTS2_INFO structure
Applies to: desktop apps only
The CERT_BASIC_CONSTRAINTS2_INFO structure contains information indicating whether the certified subject can act as a CA or an end entity. If the subject can act as a CA, a certification path length constraint can also be specified.
CryptDecodeObject creates an instance of this structure when performed on a CERT_EXTENSION structure's Value member with the structure's pszObjId member set to szOID_BASIC_CONSTRAINTS2.
An instance of this structure can be used as input to CryptEncodeObject to create an appropriate CERT_EXTENSION.
Syntax
typedef struct _CERT_BASIC_CONSTRAINTS2_INFO {
BOOL fCA;
BOOL fPathLenConstraint;
DWORD dwPathLenConstraint;
} CERT_BASIC_CONSTRAINTS2_INFO, *PCERT_BASIC_CONSTRAINTS2_INFO;
Members
- fCA
-
Boolean indicating whether the certificate subject can act as a certification authority (CA) or not.
- fPathLenConstraint
-
Boolean indicating whether the dwPathLenConstraint field limits the maximum length of the certification path. Used only if fCA is TRUE.
- dwPathLenConstraint
-
Maximum number of CA certificates that can follow this certificate in a certification path. A value of zero indicates that the subject of this certificate can issue certificates only to end entities and not to other CAs. Used only if both fCA and fPathLenConstraint are TRUE.
Requirements
|
Minimum supported client | Windows 2000 Professional |
|---|---|
|
Minimum supported server | Windows 2000 Server |
|
Header |
|
Send comments about this topic to Microsoft
Build date: 3/6/2012
