Represents the different verification flags used to verify a server's certificate.
public enum VerificationFlags
Public Enum VerificationFlags
public enum class VerificationFlags
Name | Description |
---|
None | No options specified. |
IgnoreTimeNotValid | Ignore certificates in the chain that are not valid either because they have expired or they are not yet in effect when determining certificate validity. |
IgnoreCtlTimeNotValid | Ignore that the certificate trust list (CTL) is not valid, for reasons such as the CTL has expired, when determining certificate verification. |
IgnoreTimeNotNested | Ignore that the CA (certificate authority) certificate and the issued certificate have validity periods that are not nested when verifying the certificate. For example, the CA cert can be valid from January 1 to December 1 and the issued certificate from January 2 to December 2, which would mean the validity periods are not nested. |
IgnoreAllTimeNotValid | Ignore certificates in the chain that have any invalid time checks. |
IgnoreInvalidBasicConstraints | Ignore that the basic constraints are not valid when determining certificate verification. |
AllowUnknownCa | Ignore that the chain cannot be verified due to an unknown certificate authority (CA). |
IgnoreWrongUsage | Ignore that the certificate was not issued for the current use when determining certificate verification. |
IgnoreInvalidPolicy | Ignore that the certificate has invalid policy when determining certificate verification. |
IgnoreEndRevUnknown | Ignore that the end certificate (the user certificate) revocation is unknown when determining certificate verification. |
IgnoreCtlSignerRevUnknown | Ignore that the certificate signer revocation is unknown when determining certificate verification. |
IgnoreCaRevUnknown | Ignore that the certificate authority revocation is unknown when determining certificate verification. |
IgnoreRootRevUnknown | Ignore that the root revocation is unknown when determining certificate verification. |
IgnoreAllRevUnknown | Ignore that the certificate revocation status is unknown when determining certificate verification. |
AllowTestRoot | Not supported. |
TrustTestRoot | Not supported. |
UseCacheOnly | Use local cache only. |
IgnoreCnNotMatch | Ignore that the certificate common name is invalid when determining certificate verification. |
SkipRevocationCheck | Skip certificate revocation check. |
Top