IX509CertificateRequestPkcs10V3 interface (certenroll.h)
The IX509CertificateRequestPkcs10V3 interface represents a PKCS #10 certificate request. It includes all of the methods defined by the IX509CertificateRequestPkcs10 and IX509CertificateRequestPkcs10V2 interfaces and adds properties that enable TPM certificate attestation.
Inheritance
The IX509CertificateRequestPkcs10V3 interface inherits from the IX509CertificateRequestPkcs10V2 interface.
Methods
The IX509CertificateRequestPkcs10V3 interface has these methods.
| IX509CertificateRequestPkcs10V3::get_AttestationEncryptionCertificate The certificate used to encrypt the EKPUB and EKCERT values from the client. This property must be set to a valid certificate that chains to a trusted machine root. (Get) |
| IX509CertificateRequestPkcs10V3::get_AttestPrivateKey True if the created private key needs to be attested; otherwise false. If true, it is expected that the AttestationEncryptionCertificate property has been set. (Get) |
| IX509CertificateRequestPkcs10V3::get_ChallengePassword The password to use when creating a request with a challenge. To create a request without a challenge, do not set the ChallengePassword property. (Get) |
| IX509CertificateRequestPkcs10V3::get_EncryptionAlgorithm The encryption algorithm used to encrypt the EKPUB and EKCERT values from the client. (Get) |
| IX509CertificateRequestPkcs10V3::get_EncryptionStrength Identifies the bit length for the EncryptionAlgorithm to use for encryption. If the EncryptionAlgorithm only supports one bit length, then you do not need to specify a value for the EncryptionStrength property. (Get) |
| IX509CertificateRequestPkcs10V3::get_NameValuePairs A collection of name/value pairs of additional certificate property values. |
| IX509CertificateRequestPkcs10V3::put_AttestationEncryptionCertificate The certificate used to encrypt the EKPUB and EKCERT values from the client. This property must be set to a valid certificate that chains to a trusted machine root. (Put) |
| IX509CertificateRequestPkcs10V3::put_AttestPrivateKey True if the created private key needs to be attested; otherwise false. If true, it is expected that the AttestationEncryptionCertificate property has been set. (Put) |
| IX509CertificateRequestPkcs10V3::put_ChallengePassword The password to use when creating a request with a challenge. To create a request without a challenge, do not set the ChallengePassword property. (Put) |
| IX509CertificateRequestPkcs10V3::put_EncryptionAlgorithm The encryption algorithm used to encrypt the EKPUB and EKCERT values from the client. (Put) |
| IX509CertificateRequestPkcs10V3::put_EncryptionStrength Identifies the bit length for the EncryptionAlgorithm to use for encryption. If the EncryptionAlgorithm only supports one bit length, then you do not need to specify a value for the EncryptionStrength property. (Put) |
Requirements
| Requirement | Value |
|---|---|
| Target Platform | Windows |
| Header | certenroll.h |
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for