A Certificate Preference payload lets you identify a Certificate Preference item in the user’s keychain that references a certificate payload included in the same profile. It can only appear in a user profile, not a device profile.
You can include multiple Certificate Preference payloads as needed. Certificate Preference payloads are designated by specifying com.apple.security.certificatepreference as the PayloadType value.
See also Identity Preference Payload for setting up identity preferences.
Required. An email address (RFC822), DNS hostname, or other name that uniquely identifies a service requiring this certificate.
Payload Certificate UUID
The UUID of another payload within the same profile that installed the identity; for example, a ‘com.apple.security.root’ payload.