deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-22 18:27:23 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity
windows-itpro-docs/windows/client-management/mdm/rootcacertificates-csp.md
Nicholas Brower 1ae3f0b230 Merged PR 4822: "msdate update (generated from most recent commit date)" 
"msdate update (generated from most recent commit date)"
2017-12-05 22:36:05 +00:00

3.3 KiB
Raw Blame History

title, description, ms.assetid, ms.author, ms.topic, ms.prod, ms.technology, author, ms.date
title description ms.assetid ms.author ms.topic ms.prod ms.technology author ms.date
RootCATrustedCertificates CSP RootCATrustedCertificates CSP F2F25DEB-9DB3-40FB-BC3C-B816CE470D61 maricia article w10 windows nickbrower 06/26/2017

RootCATrustedCertificates CSP

The RootCATrustedCertificates configuration service provider enables the enterprise to set the Root Certificate Authority (CA) certificates.

Note

The ./User/ configuration is not supported for RootCATrustedCertificates/Root/.

  The following image shows the RootCATrustedCertificates configuration service provider in tree format.

roocacertificate

Device or User
For device certificates, use ./Device/Vendor/MSFT path and for user certificates use ./User/Vendor/MSFT path.

RootCATrustedCertificates
The root node for the RootCATrustedCertificates configuration service provider.

RootCATrustedCertificates/Root/
Defines the certificate store that contains root, or self-signed certificates, in this case, the computer store.

Note

The ./User/ configuration is not supported for RootCATrustedCertificates/Root/.

  RootCATrustedCertificates/CA
Node for CA certificates.

RootCATrustedCertificates/TrustedPublisher
Node for trusted publisher certificates.

RootCATrustedCertificates/TrustedPeople
Node for trusted people certificates.

CertHash
Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value.

The supported operations are Get and Delete.

/EncodedCertificate
Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.

The supported operations are Add, Get, and Replace.

/IssuedBy
Returns the name of the certificate issuer. This is equivalent to the Issuer member in the CERT_INFO data structure.

The only supported operation is Get.

/IssuedTo
Returns the name of the certificate subject. This is equivalent to the Subject member in the CERT_INFO data structure.

The only supported operation is Get.

/ValidFrom
Returns the starting date of the certificate's validity. This is equivalent to the NotBefore member in the CERT_INFO data structure.

The only supported operation is Get.

/ValidTo
Returns the expiration date of the certificate. This is equivalent to the NotAfter member in the CERT_INFO data structure.

The only supported operation is Get.

/TemplateName
Returns the certificate template name.

The only supported operation is Get.

Related topics

Configuration service provider reference