X509Certificate2 Constructor (Byte, SecureString, X509KeyStorageFlags)
Initializes a new instance of the X509Certificate2 class using a byte array, a password, and a key storage flag.
Assembly: System (in System.dll)
public X509Certificate2( byte rawData, SecureString password, X509KeyStorageFlags keyStorageFlags )
- Type: System.Byte
A byte array that contains data from an X.509 certificate.
- Type: System.Security.SecureString
The password required to access the X.509 certificate data.
- Type: System.Security.Cryptography.X509Certificates.X509KeyStorageFlags
A bitwise combination of the enumeration values that control where and how to import the certificate.
An error with the certificate occurs. For example:
This constructor is used with PKCS12 (PFX) files that contain the certificate's private key. Calling this constructor with the correct password decrypts the private key and saves it to a Microsoft Cryptographic API Cryptographic Service Provider (CSP).
Never hard code a password within your source code. Hard-coded passwords can be retrieved from an assembly using the Ildasm.exe (MSIL Disassembler), a hex editor, or by simply opening up the assembly in a text editor such as Notepad.exe.
If you create an X509Certificate certificate by specifying a PKCS7 signed file store for rawData, the X509Certificate is created for the certificate that signed the store rather than for any of the certificates within the store.
Windows 8.1, Windows Server 2012 R2, Windows 8, Windows Server 2012, Windows 7, Windows Vista SP2, Windows Server 2008 (Server Core Role not supported), Windows Server 2008 R2 (Server Core Role supported with SP1 or later; Itanium not supported)
The .NET Framework does not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.