Lines Matching full:certificate
319 # Properties to configure OCSP for certificate revocation checking
324 # By default, OCSP is not used for certificate revocation checking.
336 # from the certificate being validated. This property explicitly specifies
339 # from the certificate or when it requires overriding.
345 # Subject name of the OCSP responder's certificate
347 # By default, the certificate of the OCSP responder is that of the issuer
348 # of the certificate being validated. This property identifies the certificate
350 # distinguished name (defined in RFC 2253) which identifies a certificate in
352 # the subject name alone is not sufficient to uniquely identify the certificate
361 # Issuer name of the OCSP responder's certificate
363 # By default, the certificate of the OCSP responder is that of the issuer
364 # of the certificate being validated. This property identifies the certificate
366 # distinguished name (defined in RFC 2253) which identifies a certificate in
376 # Serial number of the OCSP responder's certificate
378 # By default, the certificate of the OCSP responder is that of the issuer
379 # of the certificate being validated. This property identifies the certificate
382 # identifies a certificate in the set of certificates supplied during cert path
463 # sub-element of the certificate algorithm name, the algorithm will be
465 # the assertion algorithm name "DSA" will disable all certificate algorithms
486 # algorithm is used in a certificate chain that terminates at a marked
496 # This constraint prohibits a certificate with the specified algorithm
497 # from being used after the date regardless of the certificate's
511 # in TLS server certificate chains when server authentication is
513 # certificate chains when client authentication is performed.
