NTAuthCertificates Object

The NTAuthCertificate Object is as follows:

  1. Object (1) of type certificationAuthority

  2. Object with cn=NTAuthCertificates

  3.  Object under the following container.

     CN=Public Key Services, CN=Services, CN=Configuration, DC=...

This object contains a CA Certificate attribute, which is a multivalue Octet String attribute where each one of its value is a DER-encoded CA signing certificate.

Specifications on the syntax of this attribute can be found in [MS-ADA1] section 2.95.