ICertAdmin2 Interface (Windows)

MSDN Home

MSDN
MSDN Library
Win32 and COM Development
Security
Cryptography
Cryptography Reference
Cryptography Interfaces

Switch View :

ICertAdmin2 Interface

The ICertAdmin2 interface is one of two interfaces that provide administration functionality for properly authorized clients.

The ICertAdmin2 interface is used to perform the following tasks:

Authorize or deny a certificate request.
Revoke an issued certificate.
Trigger the generation of a certificate revocation list (CRL).
Get the current CRL for the server.
Determine whether a certificate is valid.
Get an archived key.
Get a certification authority (CA) display name, property, or property flag.
Publish one or several CRLs.
Get or set configuration information.
Determine which roles are set.
Import a certificate or key.

Certificate Services interfaces support both apartment-threading and free-threading models. For better throughput, free threading is recommended.

Windows 2000: Certificate Services interfaces do not support free threading.

Inheritance

The ICertAdmin2 interface inherits the ICertAdmin interface.

Methods

The ICertAdmin2 interface inherits from ICertAdmin and IDispatch.

In addition, ICertAdmin2 defines the following methods.

Method	Description
IsValidCertificate	Checks the validity of a certificate.
GetRevocationReason	Returns a value that specifies the reason a certificate was revoked.
RevokeCertificate	Revokes a certificate on a specified date.
SetRequestAttributes	Sets the attributes of a certificate request.
SetCertificateExtension	Adds a new extension to a certificate to be issued.
DenyRequest	Denies a certificate request.
ResubmitRequest	Submits a pended certificate request to the policy module.
PublishCRL	Publishes a new CRL.
GetCRL	Gets a pointer to the current CRL.
ImportCertificate	Imports a previously issued certificate.
PublishCRLs	Publishes CRLs for the CA.
GetCAProperty	Retrieves a property value from the CA.
SetCAProperty	Sets a property value for the CA.
GetCAPropertyFlags	Retrieves the property flags (denoting data type and indexed status) for a property.
GetCAPropertyDisplayName	Retrieves the display name for a property.
GetArchivedKey	Retrieves an archived key recovery BLOB.
GetConfigEntry	Retrieves configuration information for a CA.
SetConfigEntry	Sets configuration information for a CA.
ImportKey	Adds an encrypted key set to an item in the Certificate Services database. The key set is encrypted to one or several key recovery agent (KRA) certificates.
GetMyRoles	Retrieves the CA roles of the caller.
DeleteRow	Deletes a row, or set of rows, from a database table.

Requirements

Minimum supported client	None supported
Minimum supported server	Windows Server 2003
Header	Certadm.h (include Certsrv.h)
Library	Certidl.lib
DLL	Certadm.dll
IID	IID_ICertAdmin2 is defined as f7c3ac41-b8ce-4fb4-aa58-3d1dc0e36b39

Send comments about this topic to Microsoft

Build date: 11/16/2009

Tags :

Community Content

Vadims Podans

Object creation in PowerShell

# To access this interface in PowerShell - it is necessary to create a com object
# The COM Object type is: CertificateAuthority.Admin.1
# More detailed scripts will always show the com object creation, then
# some use of what's created.

# Create com object
$CertAdmin = New-Object -com "CertificateAuthority.Admin.1"

Tags : code powershell com certificateauthority.admin.1