/n software 3-D Secure V2 ActiveX Edition

Questions / Feedback?

RootCertificate Property

Contains the certificate used to verify the signature of the PARes message returned by the ACS.

Syntax

mpicontrol.RootCertificate[=string]

Default Value

""

Remarks

This property contains the CA signing certificate used to verify the signature of the Payer Authentication Response (PARes), stored in the AuthenticationCertificate property. This verification takes place after calling the method CheckAuthenticationResponse with the PARes packet returned from the Access Control Server (ACS).

To support multiple CA signing certificates, add all the certificates in the chain by prepending a '+' character to the Base-64 encoded certificate body. For example, the code below adds three certs to the RootCertificate property.


control.RootCertificate = "MIIC6jCCAdKgAwIBAgICAIowDQYJ..."
control.RootCertificate = "+MIIDSjCCAjKgAwIBAgIBATANBgkq..."
control.RootCertificate = "+MIIDdjCCAl6gAwIBAgIBBjANBgkq..."

If verification of the AuthenticationCertificate fails, the RootCertificate will be compared byte-by-byte to the AuthenticationCertificate. This feature allows the developer to set the RootCertificate to the exact certificate he or she expects to receive. This is useful for testing, but use this feature with caution. The RootCertificate property should always be set to a proper CA signing certificate on production systems.

To read or write binary data to the property, a Variant (Byte Array) version is provided in .RootCertificateB.

Data Type

Binary String

Copyright (c) 2022 /n software inc. - All rights reserved.
/n software 3-D Secure V2 ActiveX Edition - Version 2.2 [Build 8162]