ICEnroll4::acceptPKCS7 Method

[This method is available for use in the operating systems specified in the Requirements section.]

The acceptPKCS7 method accepts and processes a PKCS #7 message that contains a certificate. The PKCS #7 is input as a parameter. This method was first defined in the ICEnroll interface.

Syntax

C++ 
HRESULT acceptPKCS7(
  [in]  BSTR PKCS7
);

Parameters

PKCS7 [in]

Represents the base64-encoded PKCS #7 that contains the certificate and the chain of certificates that identifies the issuer.

Return Value

The return value is an HRESULT. A value of S_OK indicates success. Upon successful completion of this function, the PKCS7 will be accepted.
VBScript 

Sub acceptPKCS7( _
  ByVal PKCS7 _
)

Parameters

PKCS7 [in]

Represents the base64-encoded PKCS #7 that contains the certificate and the chain of certificates that identifies the issuer.

Return Value

This method does not return a value.

Remarks

The PKCS #7 input as a parameter for acceptPKCS7 contains the request certificate and the chain of certificates identifying the issuer of the certificate. Typically, but not always, the chain of certificates does not include the root. The PKCS #7 can be in base64-encoded, binary, or X.509 certificate format (with or without the begin cert / end cert tags). The certificate and the associated keys generated for it are put in the MY store. A root certificate is placed in the ROOT store and the rest of the chain of certificates are placed in the certification authority (CA) store. If any ROOT certificates found in the PKCS #7 are accepted, Crypt32 will notify the user that a ROOT certificate is being added to his store. The user has the option of declining the ROOT certificate. This option is provided so that the user can decline to place an untrusted root in the ROOT store. Declining to place the ROOT in the ROOT store will not cause Certificate Enrollment Control to fail acceptance.

By default, the system stores MY, CA, ROOT, and REQUEST are used to store the certificates. However, you can specify other stores by assigning the following properties before calling this method:

When this method is called from script, the method displays a user interface that asks whether the user will allow installation of a certificate.

Requirements

Minimum supported clientWindows XP
Minimum supported serverWindows Server 2003
HeaderXenroll.h
LibraryUuid.lib
DLLXenroll.dll
IIDIID_ICEnroll4 is defined as c1f1188a-2eb5-4a80-841b-7e729a356d90

See Also

ICEnroll4
ICEnroll3
ICEnroll2
ICEnroll
CEnroll
acceptFilePKCS7
CAStoreName
MyStoreName
RequestStoreName
RootStoreName

Send comments about this topic to Microsoft

Build date: 11/16/2009

Tags :


Page view tracker