This document specifies the syntax and interpretation of certificate templates. While not strictly a protocol, the templates form the basis of certificate management for the Windows Client Certificate Enrollment Protocol. This specification consists of attributes that are accessed by using Lightweight Directory Access Protocol (LDAP), as specified in [RFC2251]. These attributes allow clients to define the behavior of a certificate authority (CA) when processing certificate requests.
Familiarity with the Windows Client Certificate Enrollment Protocol Specification is required for a complete understanding of this specification.
Sections 1.7 and 2 of this specification are normative and can contain the terms MAY, SHOULD, MUST, MUST NOT, and SHOULD NOT as defined in RFC 2119. All other sections and examples in this specification are informative.