CIM SMASH/Server Management API
Class CIM_AcceptCredentialFrom
extends CIM_Dependency (Association)
This association specifies that a credential management service (e.g., CertificateAuthority or Kerberos key distribution service) is to be trusted to certify credentials, presented at the packet level. The association defines an 'approved' CredentialManagementService that is used for validation. The use of this class is best explained via an example: If a CertificateAuthority is specified using this association, and a corresponding X509CredentialFilterEntry is also associated with a PacketFilterCondition (via the relationship, FilterOfPacketCondition), then the credential MUST match the FilterEntry data AND be certified by that CA (or one of the CredentialManagementServices in its trust hierarchy). Otherwise, the X509CredentialFilterEntry is deemed not to match. If a credential is certified by a CredentialManagementService associated with the PacketFilterCondition through the AcceptCredentialFrom relationship, but there is no corresponding CredentialFilterEntry, then all credentials from the related service are considered to match.
Details...
This class is not implemented.
Class Qualifiers
Name | Data Type | Value | Scope | Flavors |
---|---|---|---|---|
Association | boolean | true | None | OVERRIDABLE= false |
Description | string | This association specifies that a credential management service (e.g., CertificateAuthority or Kerberos key distribution service) is to be trusted to certify credentials, presented at the packet level. The association defines an 'approved' CredentialManagementService that is used for validation. The use of this class is best explained via an example: If a CertificateAuthority is specified using this association, and a corresponding X509CredentialFilterEntry is also associated with a PacketFilterCondition (via the relationship, FilterOfPacketCondition), then the credential MUST match the FilterEntry data AND be certified by that CA (or one of the CredentialManagementServices in its trust hierarchy). Otherwise, the X509CredentialFilterEntry is deemed not to match. If a credential is certified by a CredentialManagementService associated with the PacketFilterCondition through the AcceptCredentialFrom relationship, but there is no corresponding CredentialFilterEntry, then all credentials from the related service are considered to match. | None | TRANSLATABLE= true |
MappingStrings | string | IPSP Policy Model.IETF|AcceptCredentialFrom | None | None |
UMLPackagePath | string | CIM::Policy | None | None |
Version | string | 2.8.0 | TOSUBCLASS= false | TRANSLATABLE= true |
Association References
Name | Class Origin | Reference Class |
---|---|---|
Antecedent | CIM_AcceptCredentialFrom | CIM_CredentialManagementService |
Dependent | CIM_AcceptCredentialFrom | CIM_PacketFilterCondition |
Copyright © 2008-2020 VMware, Inc. All rights reserved.