API Reference
Class
TemplateRow
Row describing a single template and key risk flags.
Inheritance
- Object
- TemplateRow
Constructors
public TemplateRow(String TemplateName, String DisplayName, Nullable<Int32> MinimalKeySize, Boolean WeakKey, Boolean IssuancePolicyMissing, Boolean TakeoverRisk, String TakeoverSummary, Boolean ExportableKeys, Boolean SupplySubject, Boolean NoManagerApproval, Boolean EnrollmentAgent, Boolean KdcAuth, String DistinguishedName, Boolean AnyEku, Boolean MissingEku, Boolean HasCodeSigningEku, Boolean HasClientAuthEku, Boolean HasSmartCardLogonEku, Boolean RaSignatureRequired, Nullable<Int32> RaSignatureRequiredValue, Boolean RaPolicyMissingWhenRequired, Boolean CodeSigningRisk, Boolean ClientAuthRisk) #Row describing a single template and key risk flags.
Parameters
- TemplateName System.String
- Template name (CN).
- DisplayName System.String
- Friendly display name.
- MinimalKeySize System.Nullable{System.Int32}
- Configured minimal key size.
- WeakKey System.Boolean
- True when MinimalKeySize is below 2048.
- IssuancePolicyMissing System.Boolean
- True when no issuance policies are configured.
- TakeoverRisk System.Boolean
- True when takeover findings exist.
- TakeoverSummary System.String
- Friendly text summarizing takeover findings.
- ExportableKeys System.Boolean
- True when private keys may be exportable.
- SupplySubject System.Boolean
- True when enrollee supplies subject.
- NoManagerApproval System.Boolean
- True when manager approval is not required.
- EnrollmentAgent System.Boolean
- True when EA EKU is present.
- KdcAuth System.Boolean
- True when KDC Authentication EKU is present.
- DistinguishedName System.String
- Template DN.
- AnyEku System.Boolean
- True when Any EKU is present.
- MissingEku System.Boolean
- True when EKU list is empty.
- HasCodeSigningEku System.Boolean
- True when Code Signing EKU is present.
- HasClientAuthEku System.Boolean
- True when Client Auth EKU is present.
- HasSmartCardLogonEku System.Boolean
- True when Smart Card Logon EKU is present.
- RaSignatureRequired System.Boolean
- True when RA signature is required.
- RaSignatureRequiredValue System.Nullable{System.Int32}
- Raw RA signature required value.
- RaPolicyMissingWhenRequired System.Boolean
- True when RA policy is missing while RA signature is required.
- CodeSigningRisk System.Boolean
- True when the template is risky for code signing usage.
- ClientAuthRisk System.Boolean
- True when the template is risky for client authentication usage.
Methods
public TemplateRow <Clone>$() #Returns:
TemplateRowpublic Void Deconstruct(out String TemplateName, out String DisplayName, out Nullable<Int32> MinimalKeySize, out Boolean WeakKey, out Boolean IssuancePolicyMissing, out Boolean TakeoverRisk, out String TakeoverSummary, out Boolean ExportableKeys, out Boolean SupplySubject, out Boolean NoManagerApproval, out Boolean EnrollmentAgent, out Boolean KdcAuth, out String DistinguishedName, out Boolean AnyEku, out Boolean MissingEku, out Boolean HasCodeSigningEku, out Boolean HasClientAuthEku, out Boolean HasSmartCardLogonEku, out Boolean RaSignatureRequired, out Nullable<Int32> RaSignatureRequiredValue, out Boolean RaPolicyMissingWhenRequired, out Boolean CodeSigningRisk, out Boolean ClientAuthRisk) #Returns:
VoidParameters
- TemplateName String
- DisplayName String
- MinimalKeySize Nullable<Int32>
- WeakKey Boolean
- IssuancePolicyMissing Boolean
- TakeoverRisk Boolean
- TakeoverSummary String
- ExportableKeys Boolean
- SupplySubject Boolean
- NoManagerApproval Boolean
- EnrollmentAgent Boolean
- KdcAuth Boolean
- DistinguishedName String
- AnyEku Boolean
- MissingEku Boolean
- HasCodeSigningEku Boolean
- HasClientAuthEku Boolean
- HasSmartCardLogonEku Boolean
- RaSignatureRequired Boolean
- RaSignatureRequiredValue Nullable<Int32>
- RaPolicyMissingWhenRequired Boolean
- CodeSigningRisk Boolean
- ClientAuthRisk Boolean
public override Int32 GetHashCode() #Returns:
Int32public override String ToString() #Returns:
StringInherited Methods
Properties
public String TemplateName { get; set; } #Template name (CN).
public String DisplayName { get; set; } #Friendly display name.
public Nullable<Int32> MinimalKeySize { get; set; } #Configured minimal key size.
public Boolean WeakKey { get; set; } #True when MinimalKeySize is below 2048.
public Boolean IssuancePolicyMissing { get; set; } #True when no issuance policies are configured.
public Boolean TakeoverRisk { get; set; } #True when takeover findings exist.
public String TakeoverSummary { get; set; } #Friendly text summarizing takeover findings.
public Boolean ExportableKeys { get; set; } #True when private keys may be exportable.
public Boolean SupplySubject { get; set; } #True when enrollee supplies subject.
public Boolean NoManagerApproval { get; set; } #True when manager approval is not required.
public Boolean EnrollmentAgent { get; set; } #True when EA EKU is present.
public Boolean KdcAuth { get; set; } #True when KDC Authentication EKU is present.
public String DistinguishedName { get; set; } #Template DN.
public Boolean AnyEku { get; set; } #True when Any EKU is present.
public Boolean MissingEku { get; set; } #True when EKU list is empty.
public Boolean HasCodeSigningEku { get; set; } #True when Code Signing EKU is present.
public Boolean HasClientAuthEku { get; set; } #True when Client Auth EKU is present.
public Boolean HasSmartCardLogonEku { get; set; } #True when Smart Card Logon EKU is present.
public Boolean RaSignatureRequired { get; set; } #True when RA signature is required.
public Nullable<Int32> RaSignatureRequiredValue { get; set; } #Raw RA signature required value.
public Boolean RaPolicyMissingWhenRequired { get; set; } #True when RA policy is missing while RA signature is required.
public Boolean CodeSigningRisk { get; set; } #True when the template is risky for code signing usage.
public Boolean ClientAuthRisk { get; set; } #True when the template is risky for client authentication usage.