146 Citrix NetScaler Policy Configuration and Reference Guide
certificate.
KEY_USAGE(string)Returns a Boolean value to indicate whether the
specified key usage extension bit value in the
X.509 certificate is set. The string argument
specifies which bit is checked. Following are valid
arguments:
•DIGITAL_SIGNATURE. Returns TRUE if
the digital signature bit is set; otherwise, it
returns FALSE.
•NONREPUDIATION. Returns TRUE if the
nonrepudiation bit is set; otherwise, it returns
FALSE.
•KEYENCIPHERMENT. Returns TRUE if the
key encipherment bit is set; otherwise, it
returns FALSE.
•DATAENCIPHERMENT. Returns TRUE if the
data encipherment bit is set; otherwise, it
returns FALSE.
•KEYAGREEMENT. Returns TRUE if the key
agreement bit is set; otherwise, it returns
FALSE.
•KEYCERTSIGN. Returns TRUE if the key cert
sign bit is set; otherwise, it returns FALSE.
•CRLSIGN. Returns TRUE if the CRL bit is
set; otherwise, it returns FALSE.
•ENCIPHERONLY. Returns TRUE if the
encipher only bit is set; otherwise, it returns
FALSE.
•DECIPHERONLY. Returns TRUE if the
decipher only bit is set; otherwise, it returns
FALSE.
certificate.PK_ALGORITHM Returns the name of the public key algorithm used
by the certificate.
certificate.PK_SIZE Returns the size of the public key used in the
certificate.
certificate.SERIALNUMBER Returns the serial number of the client certificate.
If this is a non-SSL transaction or there is an error
in the certificate, this operation returns an empty
string.
certificate.
SIGNATURE_ALGORITHM Returns the name of the cryptographic algorithm
used by the CA to sign this certificate.
Operations That Can Be Specified with the CLIENT.SSL.CLIENT_CERT Prefix
SSL Certificate Operation Description