X509CertificateTemplateSubjectNameFlag enumeration (certenroll.h)
The X509CertificateTemplateSubjectNameFlag enumeration contains values that specify server and client actions concerning subject names.
Syntax
typedef enum X509CertificateTemplateSubjectNameFlag {
SubjectNameEnrolleeSupplies = 0x1,
SubjectNameRequireDirectoryPath = 0x80000000,
SubjectNameRequireCommonName = 0x40000000,
SubjectNameRequireEmail = 0x20000000,
SubjectNameRequireDNS = 0x10000000,
SubjectNameAndAlternativeNameOldCertSupplies = 0x8,
SubjectAlternativeNameEnrolleeSupplies = 0x10000,
SubjectAlternativeNameRequireDirectoryGUID = 0x1000000,
SubjectAlternativeNameRequireUPN = 0x2000000,
SubjectAlternativeNameRequireEmail = 0x4000000,
SubjectAlternativeNameRequireSPN = 0x800000,
SubjectAlternativeNameRequireDNS = 0x8000000,
SubjectAlternativeNameRequireDomainDNS = 0x400000
} ;
Constants
SubjectNameEnrolleeSuppliesValue: 0x1 Instructs the client to provide subject information in the certificate request. |
SubjectNameRequireDirectoryPathValue: 0x80000000 Instructs the certification authority (CA) to specify the requestor's Active Directory distinguished name as the subject name in the issued certificate. |
SubjectNameRequireCommonNameValue: 0x40000000 Instructs the certification authority (CA) to specify the requestor's Active Directory common name (CN) as the subject name in the issued certificate. |
SubjectNameRequireEmailValue: 0x20000000 Instructs the CA to specify the value of the e-mail attribute in the requestor's Active Directory user object as the subject name in the issued certificate. |
SubjectNameRequireDNSValue: 0x10000000 Instructs the CA to specify the value of the DNS attribute in the requestor's Active Directory user object as the subject name in the issued certificate. |
SubjectNameAndAlternativeNameOldCertSuppliesValue: 0x8 Instructs the client to reuse the subject name and alternative subject name extensions from an existing valid certificate when creating a renewal certificate request. This flag can only be used when the SubjectNameEnrolleeSupplies or the SubjectAlternativeNameEnrolleeSupplies flag is specified. |
SubjectAlternativeNameEnrolleeSuppliesValue: 0x10000 Instructs the client to provide subject alternative name information in the certificate request. |
SubjectAlternativeNameRequireDirectoryGUIDValue: 0x1000000 Instructs the CA to add the value of the objectGUID attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate. |
SubjectAlternativeNameRequireUPNValue: 0x2000000 Instructs the CA to add the value of the UPN attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate. |
SubjectAlternativeNameRequireEmailValue: 0x4000000 Instructs the CA to add the value of the e-mail attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate. |
SubjectAlternativeNameRequireSPNValue: 0x800000 Instructs the CA to add the value of the SPN attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate. |
SubjectAlternativeNameRequireDNSValue: 0x8000000 Instructs the CA to add the value of the DNS attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate. |
SubjectAlternativeNameRequireDomainDNSValue: 0x400000 Instructs the CA to add the value of the DNS of the root domain to the Subject Alternative Name extension in the issued certificate. |
Requirements
| Requirement | Value |
|---|---|
| Minimum supported client | Windows 7 [desktop apps only] |
| Minimum supported server | Windows Server 2008 R2 [desktop apps only] |
| Header | certenroll.h |
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for