CipherSuitesPolicy.AllowedCipherSuites Property

Definition

Important

This API is not CLS-compliant.

Gets a subset of valid cipher suites passed into CipherSuitesPolicy(IEnumerable<TlsCipherSuite>) constructor as a collection of cipher suites allowed in this policy for negotiation.

public:
 property System::Collections::Generic::IEnumerable<System::Net::Security::TlsCipherSuite> ^ AllowedCipherSuites { System::Collections::Generic::IEnumerable<System::Net::Security::TlsCipherSuite> ^ get(); };
[System.CLSCompliant(false)]
public System.Collections.Generic.IEnumerable<System.Net.Security.TlsCipherSuite> AllowedCipherSuites { get; }
[<System.CLSCompliant(false)>]
member this.AllowedCipherSuites : seq<System.Net.Security.TlsCipherSuite>
Public ReadOnly Property AllowedCipherSuites As IEnumerable(Of TlsCipherSuite)

Property Value

The collection of cipher suites allowed in this policy for negotiation.

Attributes

Remarks

Note

Defining a cipher suite policy on SslStream authentication will prevent the OS from deciding which are the best cipher suites to negotiate with and requires that you manually check and update this code. We strongly recommend that you avoid using this feature and rely on your constantly updated OS policy.

Unlike the operating system's underlying SSL/TLS implementation, the order of the TlsCipherSuite elements in allowedCipherSuites doesn't guarantee their priority in client-server negotiation. You can only initialize an instance of this class if you're using Linux systems with OpenSSL 1.1.1 or higher or macOS.

Applies to