pcaconnectorad/aws.sdk.kotlin.services.pcaconnectorad.model/EnrollmentFlagsV3

EnrollmentFlagsV3

class EnrollmentFlagsV3

Template configurations for v3 template schema.

Types

Builder

class Builder

Companion

object Companion

Properties

enableKeyReuseOnNtTokenKeysetStorageFull

val enableKeyReuseOnNtTokenKeysetStorageFull: Boolean?

Allow renewal using the same key.

includeSymmetricAlgorithms

val includeSymmetricAlgorithms: Boolean?

Include symmetric algorithms allowed by the subject.

noSecurityExtension

val noSecurityExtension: Boolean?

This flag instructs the CA to not include the security extension szOID_NTDS_CA_SECURITY_EXT (OID:1.3.6.1.4.1.311.25.2), as specified in [MS-WCCE] sections 2.2.2.7.7.4 and 3.2.2.6.2.1.4.5.9, in the issued certificate. This addresses a Windows Kerberos elevation-of-privilege vulnerability.

removeInvalidCertificateFromPersonalStore

val removeInvalidCertificateFromPersonalStore: Boolean?

Delete expired or revoked certificates instead of archiving them.

userInteractionRequired

val userInteractionRequired: Boolean?

Require user interaction when the subject is enrolled and the private key associated with the certificate is used.

Functions

copy

inline fun copy(block: EnrollmentFlagsV3.Builder.() -> Unit = {}): EnrollmentFlagsV3

equals

open operator override fun equals(other: Any?): Boolean

hashCode

open override fun hashCode(): Int

toString

open override fun toString(): String