Certificate Preference Payload

../../_images/com.apple.security.pkcs1.png

Template

A Certificate Preference payload lets you identify a Certificate Preference item in the user’s keychain that references a certificate payload included in the same profile. It can only appear in a user profile, not a device profile.

You can include multiple Certificate Preference payloads as needed. Certificate Preference payloads are designated by specifying com.apple.security.certificatepreference as the PayloadType value.

See also Identity Preference Payload for setting up identity preferences.

Summary

PayloadType:com.apple.security.certificatepreference
Supervised Only:
 N/A
macOS:10.12
macOS Deprecated:
 N/A
iOS:N/A
iOS Deprecated:N/A
Highlander:N/A

Keys

Name

Service Name

Required. An email address (RFC822), DNS hostname, or other name that uniquely identifies a service requiring this certificate.

Type Default Required Regex iOS macOS Supervised
string N/A always N/A N/A N/A N/A

PayloadCertificateUUID

Payload Certificate UUID

The UUID of another payload within the same profile that installed the identity; for example, a ‘com.apple.security.root’ payload.

Type Default Required Regex iOS macOS Supervised
string N/A always ^[0-9A-Za-z]{8}-[0-9A-Za-z]{4}-[0-9A-Za-z]{4}-[0-9A-Za-z]{4}-[0-9A-Za-z]{12}$ N/A N/A N/A