See Also
 Important: |
|---|
| This is retired content. This content is outdated and is no longer being maintained. It is provided as a courtesy for individuals who are still using these technologies. This content may contain URLs that were valid when originally published, but now link to sites or pages that no longer exist. |
This structure contains information indicating whether the certified subject can act as a certification authority (CA) or an end entity. If the subject can act as a CA, a certification path length constraint can also be specified.
The CryptDecodeObjectfunction creates an instance of this structure when performed on a CERT_EXTENSIONstructure's Valuemember with the structure's pszObjIdmember set to szOID_BASIC_CONSTRAINTS2.
An instance of this structure can be used as input to the CryptEncodeObjectfunction to create an appropriate CERT_EXTENSIONstructure.
Syntax
typedef struct _CERT_BASIC_CONSTRAINTS2_INFO {
BOOL
fCA;
BOOL
fPathLenConstraint;
DWORD
dwPathLenConstraint;
} CERT_BASIC_CONSTRAINTS2_INFO, *PCERT_BASIC_CONSTRAINTS2_INFO;
|
Members
- fCA
-
Boolean value indicating whether the certificate subject can act as a certification authority (CA).
- fPathLenConstraint
-
Boolean indicating whether the dwPathLenConstraintfield limits the maximum length of the certification path. Used only if fCAis TRUE.
- dwPathLenConstraint
-
Maximum number of CA certificates that can follow this certificate in a certification path. A value of zero indicates that the subject of this certificate can issue certificates only to end entities and not to other CAs. Used only if both fCAand fPathLenConstraintare TRUE.
Requirements
| Header | wincrypt.h |
| Windows Embedded CE | Windows CE 3.0 and later |
| Windows Mobile | Windows Mobile Version 5.0 and later |