OcspResponderRevocationConfigurationGetSigningCertificateCandidates Method |
Gets a collection of OCSP signing certificate candidates for current CA configuration.
This method searches certificates installed in 'LocalMachine\My' ('Local Machine\Personal'). Certificates stored in other places
or other accounts (such as Network Service account) are not shown.
Namespace:
SysadminsLV.PKI.Management.CertificateServices
Assembly:
SysadminsLV.PKI (in SysadminsLV.PKI.dll) Version: 3.7.0.0 (3.7.0.0)
Syntax public X509Certificate2Collection GetSigningCertificateCandidates()
Public Function GetSigningCertificateCandidates As X509Certificate2Collection
public:
X509Certificate2Collection^ GetSigningCertificateCandidates()
member GetSigningCertificateCandidates : unit -> X509Certificate2Collection
Return Value
Type:
X509Certificate2CollectionA collection of OCSP signing certificate candidates.
Remarks
Each signing certificate has the following properties:
- Signed by the CA specified in this revocation configuration object.
- Includes the Online Certificate Status Protocol signing (id-kp-OCSPSigning) enhanced key usage
- Has not expired.
- Responder server can access the certificate private key
See Also