Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
[This property is no longer available for use as of Windows Server 2008 and Windows Vista.]
The LimitExchangeKeyToEncipherment property sets or retrieves a Boolean value that determines whether an AT_KEYEXCHANGE request contains digital signature and nonrepudiation key usages.
This property was first introduced in the IEnroll2 interface.
This property is read/write.
Syntax
HRESULT put_LimitExchangeKeyToEncipherment(
BOOL fLimitExchangeKeyToEncipherment
);
Parameters
fLimitExchangeKeyToEncipherment
Return value
None
Remarks
This property is a Boolean value and affects only AT_KEYEXCHANGE requests. It has no impact on AT_SIGNATURE requests.
If the value for this property is FALSE, an AT_KEYEXCHANGE request will contain the following key usages:
- CERT_DATA_ENCIPHERMENT_KEY_USAGE
- CERT_KEY_ENCIPHERMENT_KEY_USAGE
- CERT_DIGITAL_SIGNATURE_KEY_USAGE
- CERT_NON_REPUDIATION_KEY_USAGE
If the value for this property is TRUE, an AT_KEYEXCHANGE request will contain the following key usages:
- CERT_DATA_ENCIPHERMENT_KEY_USAGE
- CERT_KEY_ENCIPHERMENT_KEY_USAGE
Requirements
| Requirement | Value |
|---|---|
| Minimum supported client | Windows XP [desktop apps only] |
| Minimum supported server | Windows Server 2003 [desktop apps only] |
| Target Platform | Windows |
| Header | xenroll.h |
| Library | Uuid.lib |
| DLL | Xenroll.dll |