Properties of ICEnroll4
The following properties are defined by the ICEnroll4 interface or are properties the ICEnroll4 interface inherits from ICEnroll, ICEnroll2, and ICEnroll3.
Property | Description |
---|---|
CAStoreFlags | Sets or retrieves a flag that controls the certification authority (CA) store when the store is opened. |
CAStoreName | Sets or retrieves the name of the store where all non-"ROOT" and non-"MY" certificates are kept. |
CAStoreType | Sets or retrieves the type of store to use for the store specified by the CAStoreName property. |
ClientId | Sets or retrieves the client ID request attribute. |
ContainerName | Sets or retrieves the name of the key container to use. |
DeleteRequestCert | Sets or retrieves a Boolean value that determines whether dummy certificates in the request store are deleted. |
EnableSMIMECapabilities | Controls whether the PKCS10 will contain a signed attribute for Secure/Multipurpose Internet Mail Extensions (S/MIME) capabilities. |
EnableT61DNEncoding | Sets or retrieves a Boolean value that determines whether the distinguished name in the request is encoded as a T61 string instead of as a UNICODE string. |
GenKeyFlags | Sets or retrieves the values passed to CryptGenKey when the certificate request is generated. |
HashAlgID | Sets or retrieves the hash algorithm used when signing a PKCS #10 certificate request. |
HashAlgorithm | Sets or retrieves only the signature hash algorithm used to sign the PKCS #10. |
IncludeSubjectKeyID | Sets or retrieves a Boolean value that controls whether a subject key identifier extension is included in the certificate request. |
KeySpec | Sets or retrieves the type of key generated. |
LimitExchangeKeyToEncipherment | Sets or retrieves a Boolean value that determines whether an AT_KEYEXCHANGE request contains digital signature and nonrepudiation key usages. |
MyStoreFlags | Sets or retrieves the registry location used for MY store. |
MyStoreName | Sets or retrieves the name of the store where certificates with linked private keys are kept. |
MyStoreType | Sets or retrieves the type of store specified by the MyStoreName property. |
PrivateKeyArchiveCertificate | Sets or retrieves the certificate that is used to archive a private key with a PKCS #7 or Certificate Management over CMS (CMC) request. |
ProviderFlags | Sets or retrieves the provider type. |
ProviderName | Sets or retrieves the name of the cryptographic service provider (CSP) to use. |
ProviderType | Sets or retrieves the type of provider. |
PVKFileName | Sets or retrieves the name of the file that will contain exported keys. |
RequestStoreFlags | Sets or retrieves the registry location used for the request store. |
RequestStoreName | Sets or retrieves the name of the store that contains the dummy certificate. This dummy certificate, along with the added private keys, remains in the Request store until a certification authority processes the request and responds with a PKCS #7. |
RequestStoreType | Sets or retrieves the type of store to use for the store specified by the RequestStoreName property. |
ReuseHardwareKeyIfUnableToGenNew | Sets or retrieves a Boolean value that determines the action taken by the certificate enrollment control object if an error is encountered when generating a new key. |
RootStoreFlags | Sets or retrieves the registry location used for the ROOT store. |
RootStoreName | Sets or retrieves the name of the root store where all intrinsically trusted self-signed ROOT certificates are kept. |
RootStoreType | Sets or retrieves the type of store to use for the store specified by the RootStoreName property. |
SignerCertificate | Sets the signing certificate. |
SPCFileName | Sets or retrieves the name of the file in which to write the resulting base64-encoded PKCS #7 (in BSTR form) as returned from the certification authority. |
ThumbPrint | Sets or retrieves a hash of the certificate data. |
UseExistingKeySet | Sets or retrieves a Boolean value that determines whether the existing keys should be used. |
WriteCertToCSP | Sets or retrieves a Boolean value that determines whether a certificate should be written to the cryptographic service provider (CSP). |
WriteCertToUserDS | Sets or retrieves a Boolean value that determines whether the certificate is written to the user's Active Directory store. |
Feedback
https://aka.ms/ContentUserFeedback.
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see:Submit and view feedback for