DefaultCertificate

Some CryptoAPI applications still require the use of a default certificate and have no functionality to let the user select which certificate to use.

This section allows registering of a specific certificate to a specific application. Format:

<application>=<token-number>|<issuer>|<subject>|<usage>

application

The name of the application. The application name Default may be used to specify the default behavior.

token-number

The certificate serial number.

issuer

The certificate issuer field.

subject

The certificate subject field.

usage

The certificate key usage.

Only specify those values that should be matched. Set a * character to match any.

Example 1. DefaultCertificate string

The following requires a specific issuer common name and key usage when used with the application.

app.exe=*|2.5.4.3=SecMaker CA v2|*|A0

This section will be ignored if any certificate on the token is marked as default.