The X509IdentityToken is used to pass an X.509 v3 Certificatewhich is issued by the user.
This token shall always be accompanied by a Signaturein the userTokenSignatureparameter of ActivateSessionif required by the SecurityPolicy. The Servershould specify a SecurityPolicyfor the UserTokenPolicyif the SecureChannelhas a SecurityPolicyof None.
Table 194defines the X509IdentityToken parameter.
Table 194– X.509 v3 Identity Token
Name |
Type |
Description |
X509IdentityToken |
structure |
X.509 v3 value. |
policyId |
String |
An identifier for the UserTokenPolicythat the token conforms to. The UserTokenPolicystructure is defined in 7.42. |
certificateData |
ByteString |
The X.509 v3 Certificatein DER format. |