Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The X509CertificateTemplateSubjectNameFlag enumeration contains values that specify server and client actions concerning subject names.
Syntax
typedef enum X509CertificateTemplateSubjectNameFlag {
SubjectNameEnrolleeSupplies = 0x1,
SubjectNameRequireDirectoryPath = 0x80000000,
SubjectNameRequireCommonName = 0x40000000,
SubjectNameRequireEmail = 0x20000000,
SubjectNameRequireDNS = 0x10000000,
SubjectNameAndAlternativeNameOldCertSupplies = 0x8,
SubjectAlternativeNameEnrolleeSupplies = 0x10000,
SubjectAlternativeNameRequireDirectoryGUID = 0x1000000,
SubjectAlternativeNameRequireUPN = 0x2000000,
SubjectAlternativeNameRequireEmail = 0x4000000,
SubjectAlternativeNameRequireSPN = 0x800000,
SubjectAlternativeNameRequireDNS = 0x8000000,
SubjectAlternativeNameRequireDomainDNS = 0x400000
} ;
Constants
SubjectNameEnrolleeSuppliesValue: 0x1 Instructs the client to provide subject information in the certificate request. |
SubjectNameRequireDirectoryPathValue: 0x80000000 Instructs the certification authority (CA) to specify the requestor's Active Directory distinguished name as the subject name in the issued certificate. |
SubjectNameRequireCommonNameValue: 0x40000000 Instructs the certification authority (CA) to specify the requestor's Active Directory common name (CN) as the subject name in the issued certificate. |
SubjectNameRequireEmailValue: 0x20000000 Instructs the CA to specify the value of the e-mail attribute in the requestor's Active Directory user object as the subject name in the issued certificate. |
SubjectNameRequireDNSValue: 0x10000000 Instructs the CA to specify the value of the DNS attribute in the requestor's Active Directory user object as the subject name in the issued certificate. |
SubjectNameAndAlternativeNameOldCertSuppliesValue: 0x8 Instructs the client to reuse the subject name and alternative subject name extensions from an existing valid certificate when creating a renewal certificate request. This flag can only be used when the SubjectNameEnrolleeSupplies or the SubjectAlternativeNameEnrolleeSupplies flag is specified. |
SubjectAlternativeNameEnrolleeSuppliesValue: 0x10000 Instructs the client to provide subject alternative name information in the certificate request. |
SubjectAlternativeNameRequireDirectoryGUIDValue: 0x1000000 Instructs the CA to add the value of the objectGUID attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate. |
SubjectAlternativeNameRequireUPNValue: 0x2000000 Instructs the CA to add the value of the UPN attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate. |
SubjectAlternativeNameRequireEmailValue: 0x4000000 Instructs the CA to add the value of the e-mail attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate. |
SubjectAlternativeNameRequireSPNValue: 0x800000 Instructs the CA to add the value of the SPN attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate. |
SubjectAlternativeNameRequireDNSValue: 0x8000000 Instructs the CA to add the value of the DNS attribute in the requestor's Active Directory user object to the Subject Alternative Name extension in the issued certificate. |
SubjectAlternativeNameRequireDomainDNSValue: 0x400000 Instructs the CA to add the value of the DNS of the root ___domain to the Subject Alternative Name extension in the issued certificate. |
Requirements
| Requirement | Value |
|---|---|
| Minimum supported client | Windows 7 [desktop apps only] |
| Minimum supported server | Windows Server 2008 R2 [desktop apps only] |
| Header | certenroll.h |