X509CertificateValidator.CreatePeerOrChainTrustValidator Method

Gets a validator that verifies the certificate is in the TrustedPeople certificate store or by specifying the context and chain policy that is used to build a certificate trust chain. The certificate is trusted if it passes either verification method.

Namespace:  System.IdentityModel.Selectors
Assembly:  System.IdentityModel (in System.IdentityModel.dll)

public static X509CertificateValidator CreatePeerOrChainTrustValidator(
	bool useMachineContext,
	X509ChainPolicy chainPolicy
)

Parameters

useMachineContext
Type: System.Boolean

true to use the machine context; false to use the current user context.

chainPolicy
Type: System.Security.Cryptography.X509Certificates.X509ChainPolicy

An X509ChainPolicy that specifies the policy used to build the trust chain.

Return Value

Type: System.IdentityModel.Selectors.X509CertificateValidator
A X509CertificateValidator that verifies the certificate is in the TrustedPeople certificate store or by building a certificate trust chain.

Use the CreatePeerOrChainTrustValidator method instead of the PeerOrChainTrust property to specify the context or to set chain policy. Chain policy can be used to specify the Enhanced Key Usage (EKU) for which the chain should be validated, or specify revocation checking.

The value of this static property can be supplied as a parameter to one of the constructors for the X509SecurityTokenAuthenticator class.

.NET Framework

Supported in: 4.6, 4.5, 4, 3.5, 3.0

.NET Framework Client Profile

Supported in: 4, 3.5 SP1
Was this page helpful?
(1500 characters remaining)
Thank you for your feedback
Show:
© 2015 Microsoft