Home Library Learn Downloads Support Community
Sign in | United States - English | |
This topic has not yet been rated - Rate this topic

X509Chain.Build Method

.NET Framework 4

Builds an X.509 chain using the policy specified in X509ChainPolicy.

Namespace:  System.Security.Cryptography.X509Certificates
Assembly:  System (in System.dll)
C#
C++
F#
VB
Copy 
[PermissionSetAttribute(SecurityAction.InheritanceDemand, Unrestricted = true)]
[PermissionSetAttribute(SecurityAction.LinkDemand, Unrestricted = true)]
public bool Build(
	X509Certificate2 certificate
)

Return Value

Type: System.Boolean
true if the X.509 certificate is valid; otherwise, false.
Exception Condition
ArgumentException

The certificate is not a valid certificate or is null.

CryptographicException

The certificate is unreadable.

Note that a valid X.509 certificate from a trusted issuer is valid only for the use specified in the X509ChainPolicy object. Certificates that meet these chain policy rules might still be invalid for specific uses with such features as Security/MIME (SMIME), Authenticode, or Secure Sockets Layer (SSL). If further processing is required to determine whether the certificate is valid for a specific policy, derive a class from X509Chain and override the Build method so that it calls the base class Build method first, and then does the additional processing.

The following code example opens the current user's personal certificate store, allows you to select a certificate, then writes certificate and certificate chain information to the console. The output depends on the certificate you select.

C#
C++
VB
Copy 

		//Output chain information of the selected certificate.
		X509Chain ch = new X509Chain();
		ch.Build (certificate);
		Console.WriteLine ("Chain Information");
		ch.ChainPolicy.RevocationMode = X509RevocationMode.Online;
		Console.WriteLine ("Chain revocation flag: {0}", ch.ChainPolicy.RevocationFlag);
		Console.WriteLine ("Chain revocation mode: {0}", ch.ChainPolicy.RevocationMode);
		Console.WriteLine ("Chain verification flag: {0}", ch.ChainPolicy.VerificationFlags);
		Console.WriteLine ("Chain verification time: {0}", ch.ChainPolicy.VerificationTime);
		Console.WriteLine ("Chain status length: {0}", ch.ChainStatus.Length);
		Console.WriteLine ("Chain application policy count: {0}", ch.ChainPolicy.ApplicationPolicy.Count);
		Console.WriteLine ("Chain certificate policy count: {0} {1}", ch.ChainPolicy.CertificatePolicy.Count, Environment.NewLine);

.NET Framework

Supported in: 4, 3.5, 3.0, 2.0

.NET Framework Client Profile

Supported in: 4, 3.5 SP1
  • InheritanceDemand  

    for full trust for inheritors. This member cannot be inherited by partially trusted code.

  • LinkDemand  

    for full trust for the immediate caller. This member cannot be used by partially trusted code.

  • StorePermission  

    for the right to open the store. Security action: Demand. Associated enumeration: StorePermissionFlags.OpenStore

  • StorePermission  

    for the right to enumerate certificates. Security action: Demand. Associated enumeration: StorePermissionFlags.EnumerateCertificates

Windows 7, Windows Vista SP1 or later, Windows XP SP3, Windows XP SP2 x64 Edition, Windows Server 2008 (Server Core not supported), Windows Server 2008 R2 (Server Core supported with SP1 or later), Windows Server 2003 SP2

The .NET Framework does not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.
Did you find this helpful?
(1500 characters remaining)
Community Content Add
Annotations FAQ