Certificates Functions
A version of this page is also available for
4/8/2010
The following tables list the complete set of functions exposed by Certificate Services.
| Programming element | Description |
|---|---|
This function adds a certificate context to the certificate store. |
|
This function adds a link in a certificate store to a certificate context in a different store. |
|
This function creates a certificate context from an encoded certificate and adds it to the certificate store. |
|
This function adds a usage identifier OID to the certificate's extended key usage (EKU) property. |
|
This function adds a serialized certificate element to the store. |
|
This function converts a CryptoAPI algorithm identifier (ALG_ID) to an ASN.1 object identifier string. |
|
This function closes a certificate store handle and reduces the reference count on the store. |
|
This function compares two certificates to determine whether they are identical. |
|
This function compares two certificate BLOB (Cryptography) structures to determine whether they are identical. |
|
This function compares two integer BLOB (Cryptography) structures to determine whether they represent equal numeric values. |
|
This function compares two encoded public keys to determine whether they are identical. |
|
This function allows an application to be notified when there is a difference between the contents of a cached store in use and the contents of that store as it is persisted to storage. |
|
This function creates a certificate context from an encoded certificate. |
|
This function deletes the specified certificate context from the certificate store. |
|
This function duplicates a pointer to a certificate chain by incrementing the chain's reference count. |
|
This function duplicates a certificate context by incrementing its reference count. |
|
This function duplicates a store handle by incrementing the store's reference count. |
|
This function retrieves the first or next extended property associated with a certificate context. |
|
This function retrieves the first or next certificate in a certificate store. |
|
This function retrieves the physical stores on a computer. |
|
This function retrieves the first or next system store available. |
|
This function retrieves the first or next system store location. |
|
This function finds the first attribute in the CRYPT_ATTRIBUTE array, as identified by its object identifier (OID). |
|
This function finds the first or next certificate context in a certificate store that matches search criteria established by the dwFindType parameter and its associated pvFindPara parameter. |
|
This function finds the first extension in the CERT_EXTENSION array, as identified by its object identifier (OID). |
|
This function finds the first relative distinguished name (RDN) attribute identified by its object identifier (OID) in an RDN list. |
|
This function frees a certificate chain by reducing its reference count. |
|
This function frees a certificate context by decrementing its reference count. |
|
This function builds a certificate chain context starting from an end certificate and going back, if possible, to a trusted root certificate. |
|
This function retrieves the information contained in an extended property of a certificate context. |
|
This function returns information from the extended key usage (EKU) extension or the EKU property of a certificate. |
|
This function acquires the intended key usage bytes from a certificate. |
|
This function retrieves the certificate context from the certificate store for the first or next issuer of the specified subject certificate. |
|
This function obtains the subject or issuer name from a certificate CERT_CONTEXT structure and converts it to a NULL-terminated character string. |
|
This function acquires the bit length of public/private keys from a public key BLOB (Cryptography). |
|
This function retrieves a store property. |
|
This function returns from a certificate store a subject certificate context uniquely identified by its issuer and serial number. |
|
This function returns an array of usages consisting of the intersection of the valid usages for all certificates in an array of certificates. |
|
This function compares the attributes in the certificate name with the specified CERT_RDN structure to determine whether all attributes are included there. |
|
This function converts the name in a BLOB (Cryptography) structure to a NULL-terminated character string. |
|
This function converts the ASN.1 object identifier (OID) string to the CryptoAPI algorithm identifier (ALG_ID). |
|
This function opens a certificate store using a specified store provider type. |
|
This function is a simplified function used to open the most common system certificate store. |
|
This function converts a name in a BLOB (Cryptography) structure to a NULL-terminated character string. |
|
This function removes a usage identifier OID from the certificate's extended key usage (EKU) property. |
|
This function saves the certificate store to a file or to a memory BLOB (Cryptography). |
|
This function serializes a certificate context's encoded certificate and its encoded properties. |
|
This function sets an extended property for a specified certificate context. |
|
This function sets the extended key usage (EKU) property for the certificate. |
|
This function sets a store property. |
|
This function converts a NULL-terminated X500 string to an encoded certificate name. |
|
This function performs the enabled verification checks on a certificate by checking the validity of the certificate's issuer. |
|
This function verifies the time validity of a certificate. |
|
This function verifies that a subject certificate's time validity nests correctly within its issuer's time validity. |
|
This function acquires a HCRYPTPROV cryptographic service provider (CSP) handle including access to its related key container and the dwKeySpec parameter for a user's specified certificate context. |
|
This function creates a key identifier from a cryptographic service provider (CSP) public key BLOB. |
|
This function decodes a structure of the type indicated by the lpszStructType parameter. |
|
This function encodes a structure of the type indicated by the value of the lpszStructType parameter. |
|
This function enumerates key identifiers and their properties. |
|
This function enumerates predefined and registered object identifier CRYPT_OID_INFO structures. |
|
This function exports the public key information associated with the provider's corresponding private key. |
|
This function enumerates the cryptographic providers and their containers to find the private key corresponding to the certificate's public key. |
|
This function retrieves the first predefined or registered CRYPT_OID_INFO structure matching a specified key type and key. |
|
This function frees a handle returned by the CryptGetOIDFunctionAddress or CryptGetDefaultOIDFunctionAddress function by decrementing the reference count on the function handle. |
|
This function loads the DLL containing a default function address. |
|
This function acquires a specific property from a specified key identifier. |
|
This function searches the list of installed functions for an encoding type and OID match. |
|
This function hashes the entire encoded content of a certificate including its signature. |
|
This function encodes the public key information in a CERT_PUBLIC_KEY_INFO structure and computes the hash of the encoded bytes. |
|
This function computes the hash of the encoded content from a signed and encoded certificate. |
|
This function imports public key information into the cryptographic service provider (CSP) and returns a handle of the public key. |
|
This function initializes and returns the handle of the OID function set identified by a supplied function set name. |
|
This function installs a previously acquired HCRYPTPROV context to be used as a default context. |
|
This function installs a set of callable OID function addresses. |
|
This function sets the property of a specified key identifier. |
|
This function encodes and signs a certificate or certificate request. |
|
This function signs the to-be-signed information in the encoded signed content. |
|
This function removes a default context previously installed by the CryptInstallDefaultContext function |
|
This function exports the certificates and, if available, their associated private keys from the referenced certificate store in Personal Information Exchange (PFX) format. PFX format is also known as Public-Key Cryptography Standards #12 (PKCS #12) format. |
|
This function imports a PFX BLOB and returns the handle of a store containing certificates and any associated private keys. |
|
This function attempts to decode the outer layer of a BLOB as a PFX packet. |
|
This function attempts to decode the outer layer of a BLOB as a PFX packet and to decrypt it with the given password. No data from the BLOB is imported. |