CertificateStore DDF File
The following shows the DDF file for the CertificateStore Configuration Service Provider.
Note This code has not been tested and is subject to change.
Note The first line of the DDF is the namespace reference for Microsoft custom properties. For more information, see Managing Microsoft Custom Properties (OMA DM).
<MgmtTree xmlns:MSFT="https://schemas.microsoft.com/MobileDevice/DM">
<VerDTD>1.1.2</VerDTD>
<Node>
<NodeName>CertificateStore</NodeName>
<Path>./Vendor/MSFT</Path>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Permanent />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>This object is used to add or delete a security certificate to the device's certificate store.</Description>
</DFProperties>
<Node>
<NodeName>Privileged Execution Trust Authorities</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Permanent />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>Binaries (.exe and .dll) signed by a certificate in this store run as privileged. The role mask does not matter for this store.</Description>
</DFProperties>
<Node>
<NodeName></NodeName>
<DFProperties>
<AccessType>
<Get />
<Delete />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<ZeroOrMore />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The SHA1 hash for the certificate. The 20-byte SHA1 hash of the certificate is specified in hexadecimal. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
<Node>
<NodeName>EncodedCertificate</NodeName>
<DFProperties>
<AccessType>
<Add />
<Get />
<Replace />
</AccessType>
<DFFormat>
<b64 />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The base64 Encoded X.509 certificate</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedBy</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate issuer. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate subject. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>TemplateName</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The string that specifies the template name used to produce the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidFrom</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The starting date of the certificate's validity. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The expiration date of the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
</Node>
</Node>
<Node>
<NodeName>Unprivileged Execution Trust Authorities</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Permanent />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>Binaries (.exe and .dll) signed by a certificate in this store run as normal. The role mask does not matter for this store.</Description>
</DFProperties>
<Node>
<NodeName></NodeName>
<DFProperties>
<AccessType>
<Get />
<Delete />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<ZeroOrMore />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The SHA1 hash for the certificate. The 20-byte SHA1 hash of the certificate is specified in hexadecimal. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
<Node>
<NodeName>EncodedCertificate</NodeName>
<DFProperties>
<AccessType>
<Add />
<Get />
<Replace />
</AccessType>
<DFFormat>
<b64 />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The base64 Encoded X.509 certificate</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedBy</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate issuer. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate subject. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>TemplateName</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The string that specifies the template name used to produce the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidFrom</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The starting date of the certificate's validity. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The expiration date of the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
</Node>
</Node>
<Node>
<NodeName>SPC</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Permanent />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The Software Publishing Certificate (SPC) is used for signing .cab, .cpf, .tsk, and .hme files and assigning the correct role mask to the .cab file installation.</Description>
</DFProperties>
<Node>
<NodeName></NodeName>
<DFProperties>
<AccessType>
<Get />
<Delete />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<ZeroOrMore />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The SHA1 hash for the certificate. The 20-byte SHA1 hash of the certificate is specified in hexadecimal. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
<Node>
<NodeName>EncodedCertificate</NodeName>
<DFProperties>
<AccessType>
<Add />
<Get />
<Replace />
</AccessType>
<DFFormat>
<b64 />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The base64 Encoded X.509 certificate</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedBy</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate issuer. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate subject. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>TemplateName</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The string that specifies the template name used to produce the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidFrom</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The starting date of the certificate's validity. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The expiration date of the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>Role</NodeName>
<DFProperties>
<AccessType>
<Add />
<Get />
<Replace />
</AccessType>
<DFFormat>
<int />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>It is used to specify a four-byte bit mask that corresponds to the roles that can be assigned to the certificate. The role mask is only used for certificates in the SPC store. When no role parm is specified for certificates that are added to the store, the role mask defaults to 0.</Description>
</DFProperties>
</Node>
</Node>
</Node>
<Node>
<NodeName>ROOT</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Permanent />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>This store holds only root (self-signed) certificates.</Description>
</DFProperties>
<Node>
<NodeName></NodeName>
<DFProperties>
<AccessType>
<Get />
<Delete />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<ZeroOrMore />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The SHA1 hash for the certificate. The 20-byte SHA1 hash of the certificate is specified in hexadecimal. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
<Node>
<NodeName>EncodedCertificate</NodeName>
<DFProperties>
<AccessType>
<Add />
<Get />
<Replace />
</AccessType>
<DFFormat>
<b64 />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The base64 Encoded X.509 certificate.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedBy</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate issuer. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate subject. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>TemplateName</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The string that specifies the template name used to produce the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidFrom</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The starting date of the certificate's validity. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The expiration date of the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
</Node>
</Node>
<Node>
<NodeName>MY</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Permanent />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>This store keeps all end-user personal certificates.</Description>
</DFProperties>
<Node>
<NodeName></NodeName>
<DFProperties>
<AccessType>
<Get />
<Delete />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<ZeroOrMore />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The SHA1 hash for the certificate. The 20-byte SHA1 hash of the certificate is specified in hexadecimal. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
<Node>
<NodeName>EncodedCertificate</NodeName>
<DFProperties>
<AccessType>
<Add />
<Get />
<Replace />
</AccessType>
<DFFormat>
<b64 />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The base64 Encoded X.509 certificate</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedBy</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate issuer. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate subject. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>TemplateName</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The string that specifies the template name used to produce the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidFrom</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The starting date of the certificate's validity. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The expiration date of the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
</Node>
</Node>
<Node>
<NodeName>CA</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Permanent />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>This cryptographic store contains intermediary certification authorities.</Description>
</DFProperties>
<Node>
<NodeName></NodeName>
<DFProperties>
<AccessType>
<Get />
<Delete />
</AccessType>
<DFFormat>
<node />
</DFFormat>
<Occurrence>
<ZeroOrMore />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The SHA1 hash for the certificate. The 20-byte SHA1 hash of the certificate is specified in hexadecimal. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
<Node>
<NodeName>EncodedCertificate</NodeName>
<DFProperties>
<AccessType>
<Add />
<Get />
<Replace />
</AccessType>
<DFFormat>
<b64 />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>3</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The base64 Encoded X.509 certificate</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedBy</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate issuer. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>IssuedTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The name of the certificate subject. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>TemplateName</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The string that specifies the template name used to produce the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidFrom</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The starting date of the certificate's validity. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
<Node>
<NodeName>ValidTo</NodeName>
<DFProperties>
<AccessType>
<Get />
</AccessType>
<DFFormat>
<chr />
</DFFormat>
<Occurrence>
<One />
</Occurrence>
<Scope>
<Dynamic />
</Scope>
<MSFT:RWAccess>1</MSFT:RWAccess>
<DFType>
<MIME>text/plain</MIME>
</DFType>
<MSFT:MinValue></MSFT:MinValue>
<MSFT:MaxValue></MSFT:MaxValue>
<MSFT:MaxLength></MSFT:MaxLength>
<Description>The expiration date of the certificate. This node is implicitly created only when the EncodedCertificate node is added.</Description>
</DFProperties>
</Node>
</Node>
</Node>
</Node>
</MgmtTree>
See Also
CertificateStore Configuration Service Provider Examples for OMA DM
Send Feedback on this topic to the authors