X509Certificate2 Constructor (Byte[], String)

X509Certificate2 Constructor (Byte[], String)


Initializes a new instance of the X509Certificate2 class using a byte array and a password.

Namespace:   System.Security.Cryptography.X509Certificates
Assembly:  System (in System.dll)

new : 
        rawData:byte[] *
        password:string -> X509Certificate2


Type: System.Byte[]

A byte array containing data from an X.509 certificate.

Type: System.String

The password required to access the X.509 certificate data.

Exception Condition

An error with the certificate occurs. For example:

  • The certificate file does not exist.

  • The certificate is invalid.

  • The certificate's password is incorrect.

This constructor creates a new X509Certificate2 object using a byte array and a password that is needed to access the certificate data. It is used with PKCS12 (PFX) files that contain the certificate's private key. Calling this constructor with the correct password decrypts the private key and saves it to a key container.

System_CAPS_security Security Note

Never hard code a password within your source code. Hard-coded passwords can be retrieved from an assembly using the Ildasm.exe (IL Disassembler), a hex editor, or by simply opening up the assembly in a text editor such as Notepad.exe.

If you create an X509Certificate2 certificate by specifying a PKCS7 signed file store for rawData, the X509Certificate2 is created for the certificate that signed the store rather than for any of the certificates within the store.


for accessing unmanaged code. Security action: LinkDemand. Associated enumeration: SecurityPermissionFlag.UnmanagedCode


for accessing unmanaged code. Security action: InheritanceDemand. Associated enumeration: SecurityPermissionFlag.UnmanagedCode

Universal Windows Platform
Available since 10
.NET Framework
Available since 2.0
Return to top
© 2015 Microsoft