Export (0) Print
Expand All
This topic has not yet been rated - Rate this topic

X509ChainStatusFlags Enumeration

Defines the status of an X509 chain.

Namespace: System.Security.Cryptography.X509Certificates
Assembly: System (in system.dll)

[FlagsAttribute] 
public enum X509ChainStatusFlags
/** @attribute FlagsAttribute() */ 
public enum X509ChainStatusFlags
FlagsAttribute 
public enum X509ChainStatusFlags
 Member nameDescription
CtlNotSignatureValidSpecifies that the certificate trust list (CTL) contains an invalid signature. 
CtlNotTimeValidSpecifies that the certificate trust list (CTL) is not valid because of an invalid time value, such as one that indicates that the CTL has expired. 
CtlNotValidForUsageSpecifies that the certificate trust list (CTL) is not valid for this use. 
CyclicSpecifies that the X509 chain could not be built. 
HasExcludedNameConstraintSpecifies that the X509 chain is invalid because a certificate has excluded a name constraint. 
HasNotDefinedNameConstraintSpecifies that the certificate has an undefined name constant. 
HasNotPermittedNameConstraintSpecifies that the certificate has an impermissible name constraint. 
HasNotSupportedNameConstraintSpecifies that the certificate does not have a supported name constant or has a name constant that is unsupported. 
InvalidBasicConstraintsSpecifies that the X509 chain is invalid due to invalid basic constraints. 
InvalidExtensionSpecifies that the X509 chain is invalid due to an invalid extension. 
InvalidNameConstraintsSpecifies that the X509 chain is invalid due to invalid name constraints. 
InvalidPolicyConstraintsSpecifies that the X509 chain is invalid due to invalid policy constraints. 
NoErrorSpecifies that the X509 chain has no errors. 
NoIssuanceChainPolicySpecifies that there is no certificate policy extension in the certificate. This error would occur if a group policy has specified that all certificates must have a certificate policy. 
NotSignatureValidSpecifies that the X509 chain is invalid due to an invalid certificate signature. 
NotTimeNestedSpecifies that the CA (certificate authority) certificate and the issued certificate have validity periods that are not nested. For example, the CA cert can be valid from January 1 to December 1 and the issued certificate from January 2 to December 2, which would mean the validity periods are not nested. 
NotTimeValidSpecifies that the X509 chain is not valid due to an invalid time value, such as a value that indicates an expired certificate. 
NotValidForUsageSpecifies that the key usage is not valid. 
OfflineRevocationSpecifies that the online certificate revocation list (CRL) the X509 chain relies on is currently offline. 
PartialChainSpecifies that the X509 chain could not be built up to the root certificate. 
RevocationStatusUnknownSpecifies that it is not possible to determine whether the certificate has been revoked. This can be due to the certificate revocation list (CRL) being offline or unavailable. 
RevokedSpecifies that the X509 chain is invalid due to a revoked certificate. 
UntrustedRootSpecifies that the X509 chain is invalid due to an untrusted root certificate. 

This enumeration is used in conjunction with the X509ChainStatus structure and the ChainStatus property.

Windows 98, Windows Server 2000 SP4, Windows Millennium Edition, Windows Server 2003, Windows XP Media Center Edition, Windows XP Professional x64 Edition, Windows XP SP2, Windows XP Starter Edition

The Microsoft .NET Framework 3.0 is supported on Windows Vista, Microsoft Windows XP SP2, and Windows Server 2003 SP1.

.NET Framework

Supported in: 3.0, 2.0
Did you find this helpful?
(1500 characters remaining)
Thank you for your feedback

Community Additions

ADD
Show:
© 2014 Microsoft. All rights reserved.