TemplateV3

Certificate validity describes the validity and renewal periods of a certificate.

Type: CertificateValidity object

Required: Yes

Enrollment flags describe the enrollment settings for certificates such as using the existing private key and deleting expired or revoked certificates.

Type: EnrollmentFlagsV3 object

Required: Yes

Extensions describe the key usage extensions and application policies for a template.

Type: ExtensionsV3 object

Required: Yes

General flags describe whether the template is used for computers or users and if the template can be used with autoenrollment.

Type: GeneralFlagsV3 object

Required: Yes

Specifies the hash algorithm used to hash the private key.

Type: String

Valid Values: SHA256 | SHA384 | SHA512

Required: Yes

Private key attributes allow you to specify the algorithm, minimal key length, key spec, key usage, and cryptographic providers for the private key of a certificate for v3 templates. V3 templates allow you to use Key Storage Providers.

Type: PrivateKeyAttributesV3 object

Required: Yes

Private key flags for v3 templates specify the client compatibility, if the private key can be exported, if user input is required when using a private key, and if an alternate signature algorithm should be used.

Type: PrivateKeyFlagsV3 object

Required: Yes

Subject name flags describe the subject name and subject alternate name that is included in a certificate.

Type: SubjectNameFlagsV3 object

Required: Yes

List of templates in Active Directory that are superseded by this template.

Type: Array of strings

Array Members: Minimum number of 1 item. Maximum number of 100 items.

Length Constraints: Minimum length of 1. Maximum length of 64.

Pattern: (?!^\s+$)((?![\x5c'\x2b,;<=>#\x22])([\x20-\x7E]))+

Required: No