X509CertificateValidator.CreatePeerOrChainTrustValidator Method

Reference

Definition

Namespace:: System.IdentityModel.Selectors

Assembly:: System.ServiceModel.Primitives.dll

Assembly:: System.IdentityModel.dll

Package:: System.ServiceModel.Primitives v6.0.0

Package:: System.ServiceModel.Primitives v6.2.0

Package:: System.ServiceModel.Primitives v8.0.0

Source:: X509CertificateValidator.cs

Source:: X509CertificateValidator.cs

Source:: X509CertificateValidator.cs

Important

Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

Gets a validator that verifies the certificate is in the TrustedPeople certificate store or by specifying the context and chain policy that is used to build a certificate trust chain. The certificate is trusted if it passes either verification method.

public:
 static System::IdentityModel::Selectors::X509CertificateValidator ^ CreatePeerOrChainTrustValidator(bool useMachineContext, System::Security::Cryptography::X509Certificates::X509ChainPolicy ^ chainPolicy);

public static System.IdentityModel.Selectors.X509CertificateValidator CreatePeerOrChainTrustValidator (bool useMachineContext, System.Security.Cryptography.X509Certificates.X509ChainPolicy chainPolicy);

static member CreatePeerOrChainTrustValidator : bool * System.Security.Cryptography.X509Certificates.X509ChainPolicy -> System.IdentityModel.Selectors.X509CertificateValidator

Public Shared Function CreatePeerOrChainTrustValidator (useMachineContext As Boolean, chainPolicy As X509ChainPolicy) As X509CertificateValidator

Parameters

useMachineContext: Boolean

true to use the machine context; false to use the current user context.

chainPolicy: X509ChainPolicy

An X509ChainPolicy that specifies the policy used to build the trust chain.

Returns

X509CertificateValidator

A X509CertificateValidator that verifies the certificate is in the TrustedPeople certificate store or by building a certificate trust chain.

Remarks

Use the CreatePeerOrChainTrustValidator method instead of the PeerOrChainTrust property to specify the context or to set chain policy. Chain policy can be used to specify the Enhanced Key Usage (EKU) for which the chain should be validated, or specify revocation checking.

The value of this static property can be supplied as a parameter to one of the constructors for the X509SecurityTokenAuthenticator class.

Applies to