Edit

Share via

X509CertificateTemplateSubjectNameFlag enumeration (certenroll.h)

  • Article

The X509CertificateTemplateSubjectNameFlag enumeration contains values that specify server and client actions concerning subject names.

Syntax

typedef enum X509CertificateTemplateSubjectNameFlag {
  SubjectNameEnrolleeSupplies = 0x1,
  SubjectNameRequireDirectoryPath = 0x80000000,
  SubjectNameRequireCommonName = 0x40000000,
  SubjectNameRequireEmail = 0x20000000,
  SubjectNameRequireDNS = 0x10000000,
  SubjectNameAndAlternativeNameOldCertSupplies = 0x8,
  SubjectAlternativeNameEnrolleeSupplies = 0x10000,
  SubjectAlternativeNameRequireDirectoryGUID = 0x1000000,
  SubjectAlternativeNameRequireUPN = 0x2000000,
  SubjectAlternativeNameRequireEmail = 0x4000000,
  SubjectAlternativeNameRequireSPN = 0x800000,
  SubjectAlternativeNameRequireDNS = 0x8000000,
  SubjectAlternativeNameRequireDomainDNS = 0x400000
} ;

Constants

 
SubjectNameEnrolleeSupplies
Value: 0x1
Instructs the client to provide subject information in the certificate request.
SubjectNameRequireDirectoryPath
Value: 0x80000000
Instructs the certification authority (CA) to specify the requestor's Active Directory distinguished name as the subject name in the issued certificate.
SubjectNameRequireCommonName
Value: 0x40000000
Instructs the certification authority (CA) to specify the requestor's Active Directory common name (CN) as the subject name in the issued certificate.
SubjectNameRequireEmail
Value: 0x20000000
Instructs the CA to specify the value of the e-mail attribute in the requestor's Active Directory user object as the subject name in the issued certificate.
SubjectNameRequireDNS
Value: 0x10000000
Instructs the CA to specify the value of the DNS attribute in the requestor's Active Directory user object as the subject name in the issued certificate.
SubjectNameAndAlternativeNameOldCertSupplies
Value: 0x8
Instructs the client to reuse the subject name and alternative subject name extensions from an existing valid certificate when creating a renewal certificate request. This flag can only be used when the SubjectNameEnrolleeSupplies or the SubjectAlternativeNameEnrolleeSupplies flag is specified.
SubjectAlternativeNameEnrolleeSupplies
Value: 0x10000
Instructs the client to provide subject alternative name information in the certificate request.
SubjectAlternativeNameRequireDirectoryGUID
Value: 0x1000000
Instructs the CA to add the value of the objectGUID attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate.
SubjectAlternativeNameRequireUPN
Value: 0x2000000
Instructs the CA to add the value of the UPN attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate.
SubjectAlternativeNameRequireEmail
Value: 0x4000000
Instructs the CA to add the value of the e-mail attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate.
SubjectAlternativeNameRequireSPN
Value: 0x800000
Instructs the CA to add the value of the SPN attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate.
SubjectAlternativeNameRequireDNS
Value: 0x8000000
Instructs the CA to add the value of the DNS attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate.
SubjectAlternativeNameRequireDomainDNS
Value: 0x400000
Instructs the CA to add the value of the DNS of the root domain to the Subject Alternative Name extension in the issued certificate.

Requirements

Requirement Value
Minimum supported client Windows 7 [desktop apps only]
Minimum supported server Windows Server 2008 R2 [desktop apps only]
Header certenroll.h