Policy Independence
Certificates are granted according to policies that define criteria that requesters must meet to receive a certificate. For example, one policy may be to grant commercial certificates only if applicants present their identification in person. Another policy may grant credentials based on email requests. An agency that issues credit cards may choose to consult a database and make phone inquiries before issuing a card.
Policies are implemented in policy modules written in C++, C, or Visual Basic. Certificate Services functions are isolated from any changes in policy that an agency might implement. Changes in policy can be fully implemented in the server policy module code. An enterprise certification authority (CA) should use only the Microsoft-provided enterprise policy module.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for