X509ApplicationPolicyConstraintsExtension Class
Represents the X.509 Application Policy Constraints certificate extension. The policy constraints
extension can be used in certificates issued to CAs.The policy constraints extension constrains
path validation in two ways. It can be used to prohibit policy mapping or require that each certificate
in a path contain an acceptable policy identifier.
Namespace: SysadminsLV.PKI.Cryptography.X509CertificatesAssembly: SysadminsLV.PKI (in SysadminsLV.PKI.dll) Version: 4.0.1
public sealed class X509ApplicationPolicyConstraintsExtension : X509Extension
Public NotInheritable Class X509ApplicationPolicyConstraintsExtension
Inherits X509Extension
public ref class X509ApplicationPolicyConstraintsExtension sealed : public X509Extension
[<SealedAttribute>]
type X509ApplicationPolicyConstraintsExtension =
class
inherit X509Extension
end
- Inheritance
- X509Extension X509ApplicationPolicyConstraintsExtension
InhibitPolicyMapping |
Gets the number of additional certificates that may appear in the path before policy mapping is no
longer permitted. For example, a value of one indicates that policy mapping may be processed in
certificates issued by the subject of this certificate, but not in additional certificates in the path.
|
RequireExplicitPolicy |
Gets the number of additional certificates that may appear in the path before an explicit policy
is required for the entire path. When an explicit policy is required, it is necessary for all
certificates in the path to contain an acceptable policy identifier in the certificate policies
extension. An acceptable policy identifier is the identifier of a policy required by the user
of the certification path or the identifier of a policy that has been declared equivalent through
policy mapping.
|