Re: CertEnumCertificatesInStore() and IE
From: Sergio Dutra [MS] (sergiod_at_online.microsoft.com)
Date: 12/11/03
- Next message: Mike Gagnon: "CryptEnumProviders"
- Previous message: Sergio Dutra [MS]: "Re: CertEnumCertificatesInStore() and IE"
- In reply to: Oliver Young: "Re: CertEnumCertificatesInStore() and IE"
- Next in thread: Michel Gallant: "Re: CertEnumCertificatesInStore() and IE"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 11 Dec 2003 09:52:12 -0800
The private key is NOT issued by a CA and it's NOT re-generated simply
because a fresher certificate is generated. In the case of roll-over, a
fresher certificate will be generated and associated with the existing
private key, and typically the older certificate has the archive bit set on
it.
-- This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm "Oliver Young" <none> wrote in message news:%2362iBrmvDHA.3496@TK2MSFTNGP11.phx.gbl... > >> Persons may wish to delete certificates without deleting the >> corresponding >> private key. > Nonsense. > >> Especially in corporate environments certificates can be >> "rolled over", meaning a new certificate is issued which corresponds to > the >> same private key as the old one but with name and/or validity periods >> updated. > New "refreshed" certificate could be issued with (old) private key. There > is > no need to leave private key when certificate was removed. > >
- Next message: Mike Gagnon: "CryptEnumProviders"
- Previous message: Sergio Dutra [MS]: "Re: CertEnumCertificatesInStore() and IE"
- In reply to: Oliver Young: "Re: CertEnumCertificatesInStore() and IE"
- Next in thread: Michel Gallant: "Re: CertEnumCertificatesInStore() and IE"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
