2.2.2.11.3 NTAuthCertificates Object

The NTAuthCertificate Object is as follows:

1. Object (1) of type certificationAuthority

2. Object with cn=NTAuthCertificates

3.  Object under the following container.

    CN=Public Key Services, CN=Services, CN=Configuration, DC=...
   

This object contains a CA Certificate attribute, which is a multivalue Octet String attribute where each one of its value is a DER-encoded CA signing certificate.

Specifications on the syntax of this attribute can be found in [MS-ADA1] section 2.95.