The ICertPolicy interface is used by the Server Engine to notify the policy module that a new certificate request has arrived for consideration. The policy module can then return to the server that the request is good and should be issued, is bad and should be denied, or should be pended for later consideration.
The pending request status will send a certificate into the certificate queue for consideration by the admin. Note that the admin may be automated to mark the request in some way and later resubmit the request to the policy module.
The following methods are provided by the ICertPolicy interface.
| Method | Description |
|---|---|
| GetDescription | Returns a human readable description of the policy module and its function. |
| Initialize | Called by the Server Engine to allow the policy module to perform initialization tasks. |
| Shutdown | Called by the Server Engine before the server is terminated. |
| VerifyRequest | Notifies the policy module that a new request has entered the system. |