X509Certificate2 Constructor (String, SecureString)

X509Certificate2 Constructor (String, SecureString)


Initializes a new instance of the X509Certificate2 class using a certificate file name and a password.

Namespace:   System.Security.Cryptography.X509Certificates
Assembly:  System (in System.dll)

public X509Certificate2(
	string fileName,
	SecureString password


Type: System.String

The name of a certificate file.

Type: System.Security.SecureString

The password required to access the X.509 certificate data.

Exception Condition

An error with the certificate occurs. For example:

  • The certificate file does not exist.

  • The certificate is invalid.

  • The certificate's password is incorrect.

This constructor is used with PKCS12 (PFX) files that contain the certificate's private key. Calling this constructor with the correct password decrypts the private key and saves it to a key container.

System_CAPS_security Security Note

Never hard code a password within your source code. Hard-coded passwords can be retrieved from an assembly using the Ildasm.exe (IL Disassembler), a hex editor, or by simply opening up the assembly in a text editor such as Notepad.exe.

If you create an X509Certificate certificate by specifying a PKCS7 signed file store for fileName, the X509Certificate is created for the certificate that signed the store rather than for any of the certificates within the store.


for accessing unmanaged code. Security action: LinkDemand. Associated enumeration: SecurityPermissionFlag.UnmanagedCode


for accessing unmanaged code. Security action: InheritanceDemand. Associated enumeration: SecurityPermissionFlag.UnmanagedCode

.NET Framework
Available since 2.0
Return to top
© 2015 Microsoft