Edit

Share via


X509ServiceCertificateAuthentication.RevocationMode Property

Definition

Gets or sets the certificate revocation mode for ChainTrust and PeerOrChainTrust X.509 certificate validation mode.

public:
 property System::Security::Cryptography::X509Certificates::X509RevocationMode RevocationMode { System::Security::Cryptography::X509Certificates::X509RevocationMode get(); void set(System::Security::Cryptography::X509Certificates::X509RevocationMode value); };
public System.Security.Cryptography.X509Certificates.X509RevocationMode RevocationMode { get; set; }
member this.RevocationMode : System.Security.Cryptography.X509Certificates.X509RevocationMode with get, set
Public Property RevocationMode As X509RevocationMode

Property Value

One of the values in X509RevocationMode: NoCheck, Online, or Offline.

Exceptions

Attempted to set when credential is read-only.

Examples

The following code shows how to set this property.

ClientCredentials creds = new ClientCredentials();

// Configure chain trust.

creds.ServiceCertificate.Authentication.CertificateValidationMode =
X509CertificateValidationMode.ChainTrust;

creds.ServiceCertificate.Authentication.RevocationMode =
X509RevocationMode.NoCheck;
Dim creds As New ClientCredentials()

' Configure chain trust.

creds.ServiceCertificate.Authentication.CertificateValidationMode = X509CertificateValidationMode.ChainTrust

creds.ServiceCertificate.Authentication.RevocationMode = X509RevocationMode.NoCheck

The property can also be set in a configuration file.

Remarks

When using certificates, the system validates that the client certificate has not been revoked, by checking that the client certificate is not in the revoked certificate list. This check can be performed either by checking online or by checking against a cached revocation list. Revocation checking can be turned off by setting this property to NoCheck.

Applies to