deviceTRUST 23.1.410 for Windows and macOS, and 23.1.400 for Ubuntu, iOS and IGEL OS 12 are now available.
×

Certificate

Agent Client Extension

Describes the private certificates available within the users certificate store.

Microsoft Windows Microsoft Windows Apple macOS Ubuntu Chrome OS IGEL OS Unicon eLux

Count

The number of installed certificates.

Dynamic property with number data type.
Persists as LOCAL_CERTIFICATE_COUNT for the local agent and REMOTE_CERTIFICATE_COUNT for the remote device.

Extended Usage

The valid extended usages of the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_EXTENDEDUSAGE for the local agent and REMOTE_CERTIFICATE_X_EXTENDEDUSAGE for the remote device.

Issuer

The name of the certificate authority that issued the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_ISSUER for the local agent and REMOTE_CERTIFICATE_X_ISSUER for the remote device.

Location

The location of the certificate, such as 'CurrentUser'.

Dynamic property with enum data type with options Current User, Local Machine.
Persists as LOCAL_CERTIFICATE_X_LOCATION for the local agent and REMOTE_CERTIFICATE_X_LOCATION for the remote device.

Name

The name of the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_NAME for the local agent and REMOTE_CERTIFICATE_X_NAME for the remote device.

Not After

The date after which the certificate expires.

Dynamic property with datetime data type.
Persists as LOCAL_CERTIFICATE_X_NOTAFTER for the local agent and REMOTE_CERTIFICATE_X_NOTAFTER for the remote device.

Not Before

The date after which the certificate becomes valid.

Dynamic property with datetime data type.
Persists as LOCAL_CERTIFICATE_X_NOTBEFORE for the local agent and REMOTE_CERTIFICATE_X_NOTBEFORE for the remote device.

Policies

The certificate policies identifying the intended purpose of the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_POLICIES for the local agent and REMOTE_CERTIFICATE_X_POLICIES for the remote device.

Root Name

The root name of the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_ROOT_NAME for the local agent and REMOTE_CERTIFICATE_X_ROOT_NAME for the remote device.

Root Thumbprint SHA256

The SHA256 Thumbprint of the root certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_ROOT_THUMBPRINT_SHA256 for the local agent and REMOTE_CERTIFICATE_X_ROOT_THUMBPRINT_SHA256 for the remote device.

Serial Number

The serial number of the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_SERIALNUMBER for the local agent and REMOTE_CERTIFICATE_X_SERIALNUMBER for the remote device.

Signature Algorithm

The algorithm used to create the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_SIGNATUREALGORITHM for the local agent and REMOTE_CERTIFICATE_X_SIGNATUREALGORITHM for the remote device.

Store

The name of the store which contains the certificate, such as 'My'.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_STORE for the local agent and REMOTE_CERTIFICATE_X_STORE for the remote device.

Subject

The subject distinguished name of the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_SUBJECT for the local agent and REMOTE_CERTIFICATE_X_SUBJECT for the remote device.

Template

The name of the template which was used to generate the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_TEMPLATE for the local agent and REMOTE_CERTIFICATE_X_TEMPLATE for the remote device.

Thumbprint SHA256

The SHA256 Thumbprint of the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_THUMBPRINT_SHA256 for the local agent and REMOTE_CERTIFICATE_X_THUMBPRINT_SHA256 for the remote device.

TPM Key Attestation

Detects the key attestation issuance policies which prove to a CA that the certificate is protected by a trusted TPM.

Dynamic property with enum data type with options None, User Credentials, Hardware Certificate, Hardware Key.
Persists as LOCAL_CERTIFICATE_X_TPM_KEY_ATTESTATION for the local agent and REMOTE_CERTIFICATE_X_TPM_KEY_ATTESTATION for the remote device.

Usage

The valid usages of the certificate.

Dynamic property with text data type.
Persists as LOCAL_CERTIFICATE_X_USAGE for the local agent and REMOTE_CERTIFICATE_X_USAGE for the remote device.

Verification Error

Describes why the certificate failed verification.

Dynamic property with enum data type with options None, Cannot Be Verified, Revoked, Untrusted Root, Untrusted Test Root, Chaining, Wrong Usage, Expired, Invalid Name, Invalid Policy, Basic Constraints, Critical, Validity Period Nesting, No Revocation Check, Revocation Offline.
Persists as LOCAL_CERTIFICATE_X_VERIFICATIONERROR for the local agent and REMOTE_CERTIFICATE_X_VERIFICATIONERROR for the remote device.

Version

The x509 format version of the certificate.

Dynamic property with enum data type with options Version 1, Version 2, Version 3.
Persists as LOCAL_CERTIFICATE_X_VERSION for the local agent and REMOTE_CERTIFICATE_X_VERSION for the remote device.