IEnroll2::put_LimitExchangeKeyToEncipherment method (xenroll.h)
[This property is no longer available for use as of Windows Server 2008 and Windows Vista.]
The LimitExchangeKeyToEncipherment property sets or retrieves a Boolean value that determines whether an AT_KEYEXCHANGE request contains digital signature and nonrepudiation key usages.
This property was first introduced in the IEnroll2 interface.
This property is read/write.
Syntax
HRESULT put_LimitExchangeKeyToEncipherment(
BOOL fLimitExchangeKeyToEncipherment
);
Parameters
fLimitExchangeKeyToEncipherment
Return value
None
Remarks
This property is a Boolean value and affects only AT_KEYEXCHANGE requests. It has no impact on AT_SIGNATURE requests.
If the value for this property is FALSE, an AT_KEYEXCHANGE request will contain the following key usages:
- CERT_DATA_ENCIPHERMENT_KEY_USAGE
- CERT_KEY_ENCIPHERMENT_KEY_USAGE
- CERT_DIGITAL_SIGNATURE_KEY_USAGE
- CERT_NON_REPUDIATION_KEY_USAGE
If the value for this property is TRUE, an AT_KEYEXCHANGE request will contain the following key usages:
- CERT_DATA_ENCIPHERMENT_KEY_USAGE
- CERT_KEY_ENCIPHERMENT_KEY_USAGE
Requirements
Requirement | Value |
---|---|
Minimum supported client | Windows XP [desktop apps only] |
Minimum supported server | Windows Server 2003 [desktop apps only] |
Target Platform | Windows |
Header | xenroll.h |
Library | Uuid.lib |
DLL | Xenroll.dll |