Class CIM_CertificateManagementService
extends CIM_KeyBasedCredentialManagementService

CIM_CertificateManagementService is used for managing X509 based certificates.

Table of Contents
Hierarchy
Direct Known Subclasses
Class Qualifiers
Class Properties
Class Methods

Class Hierarchy

CIM_ManagedElement
   |
   +--CIM_ManagedSystemElement
   |
   +--CIM_LogicalElement
   |
   +--CIM_EnabledLogicalElement
   |
   +--CIM_Service
   |
   +--CIM_SecurityService
   |
   +--CIM_AuthenticationService
   |
   +--CIM_CredentialManagementService
   |
   +--CIM_KeyBasedCredentialManagementService
   |
   +--CIM_CertificateManagementService

Direct Known Subclasses

Class Qualifiers

NameData TypeValue
ClassConstraintstring/* The constraints below aim to efficiently */ /* represent a singular OctetString. Each of the properties*/ /* is a single encoded string, thus only the first element */ /* needs to be populated. */ inv:self.CreateCertificateSigningRequest.Subject->size()<=1 and self.CreateCertificateSigningRequest.AltSubject->size()<=1 and self.CreateCertificateSigningRequest.CSR->size()=1 and self.CreateSelfSignedCertificate.Subject->size()<=1 and self.CreateSelfSignedCertificate.AltSubject->size()<=1 and self.ImportEncodedCertificates.EncodedCertificates->size()=1 and self.ApplyCRL.EncodedCRL->size()=1 and self.ExportEncodedCertificates.EncodedCertificates->size()=1
DescriptionstringCIM_CertificateManagementService is used for managing X509 based certificates.
UMLPackagePathstringCIM::User::SecurityServices
Versionstring2.29.0

Class Properties

Inherited Properties

NameData TypeClass Origin
CaptionstringCIM_ManagedElement
CommunicationStatusuint16CIM_ManagedSystemElement
CreationClassNamestringCIM_Service
DescriptionstringCIM_ManagedElement
DetailedStatusuint16CIM_ManagedSystemElement
ElementNamestringCIM_ManagedElement
EnabledDefaultuint16CIM_EnabledLogicalElement
EnabledStateuint16CIM_EnabledLogicalElement
Generationuint64CIM_ManagedElement
HealthStateuint16CIM_ManagedSystemElement
InstallDatedatetimeCIM_ManagedSystemElement
InstanceIDstringCIM_ManagedElement
NamestringCIM_Service
OperatingStatusuint16CIM_ManagedSystemElement
OtherEnabledStatestringCIM_EnabledLogicalElement
PrimaryOwnerContactstringCIM_Service
PrimaryOwnerNamestringCIM_Service
PrimaryStatusuint16CIM_ManagedSystemElement
RequestedStateuint16CIM_EnabledLogicalElement
StartedbooleanCIM_Service
StartModestringCIM_Service
StatusstringCIM_ManagedSystemElement
SystemCreationClassNamestringCIM_Service
SystemNamestringCIM_Service
TimeOfLastStateChangedatetimeCIM_EnabledLogicalElement
TransitioningToStateuint16CIM_EnabledLogicalElement
AvailableRequestedStatesuint16[]CIM_EnabledLogicalElement
OperationalStatusuint16[]CIM_ManagedSystemElement
StatusDescriptionsstring[]CIM_ManagedSystemElement

Class Methods

Local Class Methods

CreateCertificateSigningRequest (uint32)

Method Qualifiers (CreateCertificateSigningRequest)

NameData TypeValue
DescriptionstringThis method is called to request a Certificate Signing Request (CSR) based on the Distinguished Name provided through Subject parameter. The CSR utilizes PKCS#10 structure as defined in RFC2986. If either Subject parameter or AltSubject parameter are NULL, the method shall return 2 (Error Occured). If the PublicPrivateKeyPair parameter is NULL, then 1) PublicKeyAlgorithm shall specify the algorithm to be used for the public key, 2) the PublicKeySize shall specify the length for the public key in bits. If the PublicPrivateKeyPair parameter is NOT NULL then the following requirements shall apply: 1) the PublicKeyAlgorithm shall be NULL, 2) the PublicKeySize shall be NULL, 3) the PublicPrivateKeyPair shall reference an instance of CIM_UnsignedCredential representing the public/ private key pair to be used for the CSR. The OutputFormat parameter shall specify the output format of the CSR. If the OutputFormat parameter has a value that is not equal to any values in the OutputFormatsSupported property on the associated CIM_CertificateManagementCapabilities instance, then the method shall return 2 (Error Occured). Upon the successful execution, the CSR output parameter shall contain the CSR in PKCS#10 structure.
ValueMapstring0, 1, 2, 3, 4, 5, 6, .., 4096, 4097..32767, 32768..65535
ValuesstringCompleted with No Error, Not Supported, Error Occured, Busy, Invalid Reference, Invalid Parameter, Access Denied, DMTF Reserved, Job Started, Method Reserved, Vendor Specified

Method Parameters (CreateCertificateSigningRequest)

NameTypeQualifiers
NameData TypeValue
AltSubjectstring
DescriptionstringAlternate subject identifier for the Certificate as specified by section 4.2.1.8 of RFC 3280.
INbooleantrue
OutputFormatuint16
DescriptionstringThe OutputFormat property represents the requested format of the Certificate Signing Request.
INbooleantrue
Requiredbooleantrue
ValueMapstring2, 3, .., 32768..65535
ValuesstringPEM, DER, DMTF Reserved, Vendor Reserved
PublicKeyAlgorithmuint16
DescriptionstringThe PublicKeyAlgorithm specifies the algorithm to be used for the public key.
INbooleantrue
ValueMapstring2, 3, 4, .., 32768..65535
ValuesstringRSA, DSA, ECDSA, DMTF Reserved, Vendor Reserved
PublicKeySizeuint16
DescriptionstringThe PublicKeySize shall specify the length for the public key in bits.
INbooleantrue
PUNITstringbit
SignatureAlgorithmuint16
DescriptionstringThe SignatureAlgorithm parameter defines the signature algorithm used to sign the CertificateRequestInfo as part of the CSR as defined in RFC 2986. This parameter covers the algorithms specified in the RFC3279.
Inbooleantrue
ValueMapstring1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20..32767, 32768..65535
ValuesstringOther, SHA1withDSA, SHA1withECDSA, SHA224withECDSA, SHA256withECDSA, SHA384withECDSA, SHA512withECDSA, GOST3411withGOST3410, GOST3411withECGOST3410, MD2withRSA, MD5withRSA, SHA1withRSA, SHA224withRSA, SHA256withRSA, SHA384withRSA, SHA512withRSA, RIPEMD160withRSA, RIPEMD128withRSA, RIPEMD256withRSA, DMTF Reserved, Vendor Reserved
Subjectstring
DescriptionstringSubject shall contain information as required by section 4.1.2.6 of RFC 3280 and shall be formatted based on RFC 4514. An example of the value of the Subject parameter could be "CN=Marshall T. Rose, O=Dover Beach Consulting, L=Santa Clara, ST=California, C=US".
DNbooleantrue
INbooleantrue
CSRstring[]
DescriptionstringThe CSR parameter is an output parameter that upon successful exection of this method will contain the formated Certificate Signing Request.Only the first element of the array property shall be populated.
INbooleanfalse
OctetStringbooleantrue
OUTbooleantrue
Requiredbooleantrue
ExtendedKeyUsageTypeuint16[]
ArrayTypestringIndexed
DescriptionstringDescribes the type for ExtendedKeyUsageValue based on the ASN.1 GeneralName types.
Inbooleantrue
ModelCorrespondencestringCIM_CertificateManagementService.CreateCertificateSigningRequest.ExtendedKeyUsageValue
ValueMapstring1, 2, 3, 4, 5, 6, 7, 8, 9, .., 32768..65535
Valuesstringother, rfc822Name, dNSName, x400Address, directoryName, ediPartyName, uniformResourceIdentifier, iPAddress, registeredID, DMTF Reserved, Vendor Reserved
ExtendedKeyUsageValuestring[]
ArrayTypestringIndexed
DescriptionstringThe ExtendedKeyUsageValue indicates one or more purposes for which the certified public key may be used in the type specified by the ExtendedKeyUsageType parameter.
Inbooleantrue
ModelCorrespondencestringCIM_CertificateManagementService.CreateCertificateSigningRequest.ExtendedKeyUsageType
Job REF CIM_ConcreteJob
DescriptionstringContains a reference to the ConcreteJob created to track the execution initiated by the method invocation. If the method returns 4096 - job started, then the parameter shall not have NULL value.
INbooleanfalse
OUTbooleantrue
PublicPrivateKeyPair REF CIM_UnsignedCredential
DescriptionstringThe PublicPrivateKeyPair parameter specifies a reference to an instance of CIM_UnsignedCredential which represents a public private key pair to be utilized by the CSR.The CIM_UnsignedCredential instance PublicKey and PublicKeyEncoding properties shall not be NULL.
INbooleantrue

CreateSelfSignedCertificate (uint32)

Method Qualifiers (CreateSelfSignedCertificate)

NameData TypeValue
DescriptionstringThis method is called to generate to generate a self-signed certificate. If either Subject parameter or AltSubject parameter are NULL, the method shall return 2 (Error Occured). If the PublicPrivateKeyPair parameter is NULL, the following numbered requirements shall apply: 1) the PublicKeyAlgorithm shall be non-NULL and specify the algorithm to be used for the public key, 3) the PublicKeySize shall be non-NULL and specify the length for the public key in bits. If the PublicPrivateKeyPair parameter is not NULL, the following numbered requirements shall apply: 1) the PublicKeyAlgorithm shall be NULL, 2) the PublicKeySize shall be NULL, 3) the PublicPrivateKeyPair shall reference an instance of CIM_UnsignedCredential representing the public/ private key pair to be used for the self signed certificate. Upon successful execution the reference to the newly created instance of CIM_X509Certificate shall be returned in the NewCertificate parameter which represents the self-signed certificate with the public/private key pair of the size specified by the KeySize parameter. If the Keystore parameter is not NULL, this instance shall be associated to the instance of CIM_Keystore referenced by the Keystore parameter through CIM_MemberOfCollection association. If the CredentialContext parameter is not NULL, the newly created instance shall be associated with the instance of CIM_ManagedElement referenced by the CredentialContext parameter through CIM_CredentialContext association. If the CredentialContext parameter is NULL, the newly created instance shall not be associated with the instance of CIM_ManagedElement through CIM_CredentialContext association.
ValueMapstring0, 1, 2, 3, 4, 5, 6, .., 4096, 4097..32767, 32768..65535
ValuesstringCompleted with No Error, Not Supported, Error Occured, Busy, Invalid Reference, Invalid Parameter, Access Denied, DMTF Reserved, Job Started, Method Reserved, Vendor Specified

Method Parameters (CreateSelfSignedCertificate)

NameTypeQualifiers
NameData TypeValue
AltSubjectstring
DescriptionstringAlternate subject identifier for the Certificate as specified by section 4.2.1.8 of RFC 3280.
INbooleantrue
PublicKeyAlgorithmuint16
DescriptionstringThe PublicKeyAlgorithm specifies the algorithm to be used for the public key.
INbooleantrue
ValueMapstring2, 3, 4, .., 32768..65535
ValuesstringRSA, DSA, ECDSA, DMTF Reserved, Vendor Reserved
PublicKeySizeuint16
DescriptionstringThe PublicKeySize shall specify the length for the public key in bits. The value shall be of power of 2.
INbooleantrue
PUNITstringbit
SignatureAlgorithmuint16
DescriptionstringThe SignatureAlgorithm parameter defines the signature algorithm used to sign the TBSCertificate as defined in RFC 3280. This parameter covers the algorithms specified in the RFC3279.
Inbooleantrue
ValueMapstring1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20..32767, 32768..65535
ValuesstringOther, SHA1withDSA, SHA1withECDSA, SHA224withECDSA, SHA256withECDSA, SHA384withECDSA, SHA512withECDSA, GOST3411withGOST3410, GOST3411withECGOST3410, MD2withRSA, MD5withRSA, SHA1withRSA, SHA224withRSA, SHA256withRSA, SHA384withRSA, SHA512withRSA, RIPEMD160withRSA, RIPEMD128withRSA, RIPEMD256withRSA, DMTF Reserved, Vendor Reserved
Subjectstring
DescriptionstringSubject shall contain the information as required by section 4.1.2.6 of RFC 3280 and shall be formatted based on RFC 4514. An example of the value of the Subject parameter could be "CN=Marshall T. Rose, O=Dover Beach Consulting, OU=Sales, L=Santa Clara, ST=California, C=US".
DNbooleantrue
INbooleantrue
Usageuint16
DescriptionstringThe usage of the certificate by the managed element that the certificate is for or is scoped to.
INbooleantrue
ModelCorrespondencestringCIM_CredentialContext.Usage
ValueMapstring2, 3, 4, 6, 7, 8, .., 32768..65535
ValuesstringOwned, Trusted, Trusted for Authentication, Trusted for Authorization, Trusted for Authentication/Authorization, Trusted for Third-Party Authentication/Authorization, DMTF Reserved, Vendor Reserved
CredentialContext REF CIM_ManagedElement
DescriptionstringThe managed element that represents the user or owner or the scoping element of the certificate. Such managed element could be the web service that owns the certificate or uses it for verification or account that the certificate is scoped to.
INbooleantrue
Job REF CIM_ConcreteJob
DescriptionstringContains a reference to the ConcreteJob created to track the execution initiated by the method invocation. If the method returns 4096 - job started, then the parameter shall not have NULL value.
INbooleanfalse
OUTbooleantrue
Keystore REF CIM_Keystore
DescriptionstringThe Keystore parameter denotes the reference to the instance of CIM_Keystore that represents the key store where the new certificate will be added.
INbooleantrue
PublicPrivateKeyPair REF CIM_UnsignedCredential
DescriptionstringThe PublicPrivateKeyPair parameter specifies a reference to an instance of CIM_UnsignedCredential which represents a public private key pair to be utilized by the newly created selef signed certificate. The PublicKey and PublicKeyEncodingproperties of the instance of CIM_UnsignedCredentialshall be Non-NULL.
INbooleantrue
SelfSignedCertificate REF CIM_X509Certificate
DescriptionstringReference to the newly created instance of CIM_X509Certificate representing the self signed certificate.
INbooleanfalse
OUTbooleantrue

ImportEncodedCertificates (uint32)

Method Qualifiers (ImportEncodedCertificates)

NameData TypeValue
DescriptionstringThis method is called to import a certificate or a certificate chain using the certificate's encoded representation. Upon successful execution the array of references to the instance(s) of CIM_X509Certificate representing the imported certificate or certificate chain shall be returned inside the NewCertificates output parameter. If the Keystore parameter is not NULL, the newly created instance(s) of CIM_X509Certificate shall be associated to the instance of the CIM_Keystore referenced in the Keystore parameter. If the CredentialContext parameter is not NULL, the newly created instance(s) of the CIM_X509Certificate shall be associated to the insatnces of CIM_ManagedElement referenced in the CredentialContext property through the CIM_CredentialContext association. If the CredentialContext parameter is NULL, the newly created instance(s) of the CIM_X509Certificate shall not be associated to the insatnces of CIM_ManagedElement through the CIM_CredentialContext association.
ValueMapstring0, 1, 2, 3, 4, 5, 6, .., 4096, 4097..32767, 32768..65535
ValuesstringCompleted with No Error, Not Supported, Error Occured, Busy, Invalid Reference, Invalid Parameter, Access Denied, DMTF Reserved, Job Started, Method Reserved, Vendor Specified

Method Parameters (ImportEncodedCertificates)

NameTypeQualifiers
NameData TypeValue
Formatuint16
DescriptionstringThe Format shall specify the format for the encoding that is used by octet string EncodedCertificates parameter.
INbooleantrue
Requiredbooleantrue
ValueMapstring2, 3, 4, 5, .., 32768..65535
ValuesstringDER, PEM, PKCS7, PKCS12, DMTF Reserved, Vendor Reserved
EncodedCertificatesstring[]
DescriptionstringAn array of strings representing octet string of an encoded certificate or certificate chain to be imported. Only the first element of the array property shall be populated, even if a certificate chain is imported.
INbooleantrue
OctetStringbooleantrue
Requiredbooleantrue
Usageuint16[]
ArrayTypestringIndexed
DescriptionstringThe usage of the certificate by the managed element that the certificate is for or is scoped to. If a certificate chain is imported, the sequence of elements in the Usage array shall correspond to the sequence of the certificates in the EncodedCertificates octet string parameter.
INbooleantrue
ModelCorrespondencestringCIM_CredentialContext.Usage, CIM_CertificateManagementService.ImportEncodedCertificates.NewCertificates
ValueMapstring2, 3, 4, 6, 7, 8, .., 32768..65535
ValuesstringOwned, Trusted, Trusted for Authentication, Trusted for Authorization, Trusted for Authentication/Authorization, Trusted for Third-Party Authentication/Authorization, DMTF Reserved, Vendor Reserved
NewCertificatesCIM_X509Certificate[]
ArrayTypestringIndexed
DescriptionstringReference to the newly created instance of CIM_X509Certificate representing the imported certificate or certificate chain.
INbooleanfalse
ModelCorrespondencestringCIM_CertificateManagementService.ImportEncodedCertificates.Usage
OUTbooleantrue
Requiredbooleantrue
CredentialContext REF CIM_ManagedElement
DescriptionstringThe managed element that represents the user or owner or the scoping element of the certificate(s). Such managed element could be the web service that owns the certificate(s) or uses it for verification or account that the certificate is scoped to.
INbooleantrue
Job REF CIM_ConcreteJob
DescriptionstringContains a reference to the ConcreteJob created to track the execution initiated by the method invocation. If the method returns 4096 - job started, then the parameter shall not have NULL value.
INbooleanfalse
OUTbooleantrue
Keystore REF CIM_Keystore
DescriptionstringThe Keystore parameter denotes the reference to the instance of CIM_Keystore that represents the key store where the new certificate or certificate chain will be added.
INbooleantrue

ImportCertificates (uint32)

Method Qualifiers (ImportCertificates)

NameData TypeValue
DescriptionstringThis method is called to import a certificate or a certificate chain using an array of embedded instance of CIM_X509Certificate. Upon successful execution the array of references to the instance(s) of CIM_X509Certificate representing the imported certificate or certificate chain shall be returned by the NewCertificates output parameter. If the Keystore parameter is not NULL, the newly created instance(s) of CIM_X509Certificate shall be associated to the instance of the CIM_Keystore referenced in the Keystore parameter. If the CredentialContext parameter is not NULL, the newly created instance(s) of the CIM_X509Certificate shall be associated to the insatnces of CIM_ManagedElement referenced in the CredentialContext property through the CIM_CredentialContext association.If the CredentialContext parameter is NULL, the newly created instance(s) of the CIM_X509Certificate shall not be associated to the insatnces of CIM_ManagedElement through the CIM_CredentialContext association.
ValueMapstring0, 1, 2, 3, 4, 5, 6, .., 4096, 4097..32767, 32768..65535
ValuesstringCompleted with No Error, Not Supported, Error Occured, Busy, Invalid Reference, Invalid Parameter, Access Denied, DMTF Reserved, Job Started, Method Reserved, Vendor Specified

Method Parameters (ImportCertificates)

NameTypeQualifiers
NameData TypeValue
InputCertificatesstring[]
DescriptionstringAn array of embedded instance(s) of CIM_X509Certificate that contains the necessary information to import a certificate or a certificate chain.
EmbeddedInstancestringCIM_X509Certificate
INbooleantrue
Requiredbooleantrue
Usageuint16[]
ArrayTypestringIndexed
DescriptionstringThe usage of the certificate by the managed element that the certificate is for or is scoped to. If a certificate chain is imported, the sequence of elements in the Usage array shall correspond to the sequence of the certificates in the InputCertificates array parameter.
INbooleantrue
ModelCorrespondencestringCIM_CredentialContext.Usage, CIM_CertificateManagementService.ImportCertificates.InputCertificates, CIM_CertificateManagementService.ImportCertificates.Usage
ValueMapstring2, 3, 4, 6, 7, 8, .., 32768..65535
ValuesstringOwned, Trusted, Trusted for Authentication, Trusted for Authorization, Trusted for Authentication/Authorization, Trusted for Third-Party Authentication/Authorization, DMTF Reserved, Vendor Reserved
NewCertificatesCIM_X509Certificate[]
DescriptionstringReference to the newly created instance of CIM_X509Certificate representing the imported certificate or certificate chain.
INbooleanfalse
OUTbooleantrue
Requiredbooleantrue
CredentialContext REF CIM_ManagedElement
DescriptionstringThe managed element that represents the user or owner or the scoping element of the certificate(s). Such managed element could be the web service that owns the certificate(s) or uses it for verification or account that the certificate is scoped to.
INbooleantrue
Job REF CIM_ConcreteJob
DescriptionstringContains a reference to the ConcreteJob created to track the execution initiated by the method invocation. If the method returns 4096 - job started, then the parameter shall not have NULL value.
INbooleanfalse
OUTbooleantrue
Keystore REF CIM_Keystore
DescriptionstringThe Keystore parameter denotes the reference to the instance of CIM_Keystore that represents the key store where the new certificate or certificate chain will be added.
INbooleantrue

ExportEncodedCertificates (uint32)

Method Qualifiers (ExportEncodedCertificates)

NameData TypeValue
DescriptionstringThis method is called to export a certificate or a certificate chain using the certificate's encoded representation. Upon successful execution the array of unsigned integers representing octet string of the exported certificate or certificate chain shall be returned inside the EncodedCertificates output parameter based on the encoding specified in the EncodingFormat parameter.
ValueMapstring0, 1, 2, 3, 4, 5, 6, .., 4096, 4097..32767, 32768..65535
ValuesstringCompleted with No Error, Not Supported, Error Occured, Busy, Invalid Reference, Invalid Parameter, Access Denied, DMTF Reserved, Job Started, Method Reserved, Vendor Specified

Method Parameters (ExportEncodedCertificates)

NameTypeQualifiers
NameData TypeValue
Formatuint16
DescriptionstringThe Format parameter specifies the format of the octet string EncodedCertificates parameter.
INbooleantrue
Requiredbooleantrue
ValueMapstring2, 3, 4, 5, .., 32768..65535
ValuesstringDER, Base64, PKCS7, PKCS12, DMTF Reserved, Vendor Reserved
EncodedCertificatesstring[]
DescriptionstringAn array of strings representing octet string of an exported encoded certificate or certificate chain. Only the first element of the array property shall be populated, even if a certificate chain is exported.
INbooleanfalse
OctetStringbooleantrue
OUTbooleantrue
Requiredbooleantrue
CertificatesToExportCIM_X509Certificate[]
DescriptionstringReference to the instance(s) of CIM_SignedCredential representing the certificate or certificate chain to be exported.
INbooleantrue
Requiredbooleantrue
Job REF CIM_ConcreteJob
DescriptionstringContains a reference to the ConcreteJob created to track the execution initiated by the method invocation. If the method returns 4096 - job started, then the parameter shall not have NULL value.
INbooleanfalse
OUTbooleantrue

ApplyCRL (uint32)

Method Qualifiers (ApplyCRL)

NameData TypeValue
DescriptionstringThis method is called to apply Certificate Revocation List (CRL) using an encoded format. Upon successful execution the references to the instance(s) of CIM_X509CRL representing the applied CRL shall be returned inside the AppliedCRL output parameter. If the Keystore parameter is not NULL, the newly created instance(s) of CIM_X509CRL shall be associated to the instance of the CIM_Keystore referenced in the Keystore parameter. The newly created instance(s) of the CIM_X509CRL shall be associated to the insatnces of CIM_ManagedElement referenced in the CredentialContext property through the CIM_CredentialContext association.
ValueMapstring0, 1, 2, 3, 4, 5, 6, .., 4096, 4097..32767, 32768..65535
ValuesstringCompleted with No Error, Not Supported, Error Occured, Busy, Invalid Reference, Invalid Parameter, Access Denied, DMTF Reserved, Job Started, Method Reserved, Vendor Specified

Method Parameters (ApplyCRL)

NameTypeQualifiers
NameData TypeValue
Formatuint16
DescriptionstringThe Format shall specify the format for the encoding that is used by octet string EncodedCRL parameter.
INbooleantrue
Requiredbooleantrue
ValueMapstring2, 3, 4, 5, .., 32768..65535
ValuesstringDER, PEM, PKCS7, PKCS12, DMTF Reserved, Vendor Reserved
EncodedCRLstring[]
DescriptionstringAn array of unsigned integers representing octet string of an encoded CRL to be applied. Only the first element of the array property shall be populated.
INbooleantrue
OctetStringbooleantrue
Requiredbooleantrue
AppliedCRL REF CIM_X509CRL
DescriptionstringReference to the newly created instance of CIM_X509CRL representing the applied CRL.
INbooleanfalse
OUTbooleantrue
Requiredbooleantrue
CredentialContext REF CIM_ManagedElement
DescriptionstringThe managed element that represents the service or the managed element for which the certificates were revoked by the application of the CRL.
INbooleantrue
Requiredbooleantrue
Job REF CIM_ConcreteJob
DescriptionstringContains a reference to the ConcreteJob created to track the execution initiated by the method invocation. If the method returns 4096 - job started, then the parameter shall not have NULL value.
INbooleanfalse
OUTbooleantrue
Keystore REF CIM_Keystore
DescriptionstringThe Keystore parameter denotes the reference to the instance of CIM_Keystore that represents the key store where the CRL will be applied.
INbooleantrue

ApplyDecodedCRL (uint32)

Method Qualifiers (ApplyDecodedCRL)

NameData TypeValue
DescriptionstringThis method is called to apply Certificate Revocation List (CRL) using the decoded format. Upon successful execution the references to the instance(s) of CIM_X509CRL representing the applied CRL shall be returned inside the AppliedCRL output parameter. If the Keystore parameter is not NULL, the newly created instance(s) of CIM_X509CRL shall be associated to the instance of the CIM_Keystore referenced in the Keystore parameter. The newly created instance(s) of the CIM_X509CRL shall be associated to the insatnces of CIM_ManagedElement referenced in the CredentialContext property through the CIM_CredentialContext association.
ValueMapstring0, 1, 2, 3, 4, 5, 6, .., 4096, 4097..32767, 32768..65535
ValuesstringCompleted with No Error, Not Supported, Error Occured, Busy, Invalid Reference, Invalid Parameter, Access Denied, DMTF Reserved, Job Started, Method Reserved, Vendor Specified

Method Parameters (ApplyDecodedCRL)

NameTypeQualifiers
NameData TypeValue
Issuerstring
DescriptionstringIssuer represents the information about the issuer of the CRL. The Issuer property shall contain information as required by section 4.1.2.4 of RFC 3280 and shall be formatted based on RFC 4514. An example of the value of the Subject parameter could be "CN=Marshall T. Rose, O=Dover Beach Consulting, OU=Sales, L=Santa Clara, ST=California, C=US".
DNbooleantrue
INbooleantrue
Requiredbooleantrue
SerialNumbersstring[]
DescriptionstringAn array of serial numbers of X.509 certificates that are part of CRL.
INbooleantrue
OctetStringbooleantrue
Requiredbooleantrue
AppliedCRL REF CIM_X509CRL
DescriptionstringReference to the newly created instance of CIM_X509CRL representing the applied CRL.
INbooleanfalse
OUTbooleantrue
Requiredbooleantrue
CredentialContext REF CIM_ManagedElement
DescriptionstringThe managed element that represents the service or the managed element for which the certificates were revoked by the application of the CRL.
INbooleantrue
Requiredbooleantrue
Job REF CIM_ConcreteJob
DescriptionstringContains a reference to the ConcreteJob created to track the execution initiated by the method invocation. If the method returns 4096 - job started, then the parameter shall not have NULL value.
INbooleanfalse
OUTbooleantrue
Keystore REF CIM_Keystore
DescriptionstringThe Keystore parameter denotes the reference to the instance of CIM_Keystore that represents the key store where the CRL will be applied.
INbooleantrue

Inherited Class Methods

NameReturn TypeClass Origin
ChangeAffectedElementsAssignedSequenceuint32CIM_Service
CreateKeystoreuint32CIM_KeyBasedCredentialManagementService
ImportPublicPrivateKeyPairuint32CIM_KeyBasedCredentialManagementService
RequestStateChangeuint32CIM_EnabledLogicalElement
StartServiceuint32CIM_Service
StopServiceuint32CIM_Service