1 Introduction

This document specifies the syntax and interpretation of certificate templates. While not strictly a protocol, the templates form the basis of certificate management for the Windows Client Certificate Enrollment Protocol. This specification consists of attributes that are accessed by using Lightweight Directory Access Protocol (LDAP), as specified in [RFC2251]. These attributes allow clients to define the behavior of a certificate authority (CA) when processing certificate requests.

Familiarity with the Windows Client Certificate Enrollment Protocol Specification is required for a complete understanding of this specification.

Sections 1.7 and 2 of this specification are normative. All other sections and examples in this specification are informative.