Edit

Bagikan melalui


X509CertificateValidator.CreateChainTrustValidator Method

Definition

Gets a validator that verifies the X.509 certificate by specifying the context and chain policy that is used to build and verify a trust chain.

public:
 static System::IdentityModel::Selectors::X509CertificateValidator ^ CreateChainTrustValidator(bool useMachineContext, System::Security::Cryptography::X509Certificates::X509ChainPolicy ^ chainPolicy);
public static System.IdentityModel.Selectors.X509CertificateValidator CreateChainTrustValidator (bool useMachineContext, System.Security.Cryptography.X509Certificates.X509ChainPolicy chainPolicy);
static member CreateChainTrustValidator : bool * System.Security.Cryptography.X509Certificates.X509ChainPolicy -> System.IdentityModel.Selectors.X509CertificateValidator
Public Shared Function CreateChainTrustValidator (useMachineContext As Boolean, chainPolicy As X509ChainPolicy) As X509CertificateValidator

Parameters

useMachineContext
Boolean

true to use the machine context; false to use the current user context.

chainPolicy
X509ChainPolicy

An X509ChainPolicy that specifies the policy used to build and verify the trust chain.

Returns

A X509CertificateValidator that validates the X.509 certificate using a trust chain.

Remarks

Use the CreateChainTrustValidator method instead of the ChainTrust property to specify the context or to set chain policy. Chain policy can be used to specify the Enhanced Key Usage (EKU) for which the chain should be validated, or specify revocation checking.

The return value for this static method can be supplied as a parameter to the constructors for the X509SecurityTokenAuthenticator class that take a validator.

Applies to