ICertPropertyEnrollmentPolicyServer::GetEnrollmentServerAuthentication method (certenroll.h)

The GetEnrollmentServerAuthentication method retrieves a value that specifies the type of authentication used by the certificate enrollment server (CES) to authenticate a client. This value is set by the Initialize method.

Syntax

HRESULT GetEnrollmentServerAuthentication(
  [out, retval] X509EnrollmentAuthFlags *pValue
);

Parameters

[out, retval] pValue

An X509EnrollmentAuthFlags enumeration value that specifies the client authentication type. This can be one of the following values.

Value Meaning
X509AuthAnonymous
Anonymous authentication.
X509AuthKerberos
Kerberos authentication.
X509AuthUsername
Clear text user name and password authentication.
Note  The user name and password are encrypted before transmission and are stored securely in the credential vault on the certificate enrollment server.
 
X509AuthCertificate
Client authentication certificate installed on the local computer and used by the server to verify the identity of the client.

Return value

If the function succeeds, the function returns S_OK.

If the function fails, it returns an HRESULT value that indicates the error. Possible values include, but are not limited to, those in the following table. For a list of common error codes, see Common HRESULT Values.

Return code/value Description
E_POINTER
The pValue parameter cannot be NULL.

Requirements

Requirement Value
Minimum supported client Windows 7 [desktop apps only]
Minimum supported server Windows Server 2008 R2 [desktop apps only]
Target Platform Windows
Header certenroll.h

See also

ICertPropertyEnrollmentPolicyServer