Class CIM_KeyBasedCredentialManagementService
extends CIM_CredentialManagementService

CIM_KeyBasedCredentialManagementService manages key based credentials such as symmetric and assymetric key pairs and certificates. It also manages the infrustracture necessary for the key based credentials such as key repositories.

Table of Contents
Hierarchy
Direct Known Subclasses
Class Qualifiers
Class Properties
Class Methods

Class Hierarchy

CIM_ManagedElement
   |
   +--CIM_ManagedSystemElement
   |
   +--CIM_LogicalElement
   |
   +--CIM_EnabledLogicalElement
   |
   +--CIM_Service
   |
   +--CIM_SecurityService
   |
   +--CIM_AuthenticationService
   |
   +--CIM_CredentialManagementService
   |
   +--CIM_KeyBasedCredentialManagementService

Direct Known Subclasses

CIM_CertificateManagementService

Class Qualifiers

NameData TypeValue
ClassConstraintstring/* The constraints below aim to efficiently */ /* represent a singular OctetString. Each of the properties*/ /* is a single encoded string, thus only the first element */ /* needs to be populated. */ inv:self.ImportPublicPrivateKeyPair.PublicKey->size()=1 and self.ImportPublicPrivateKeyPair.PrivateKey->size()=1
DescriptionstringCIM_KeyBasedCredentialManagementService manages key based credentials such as symmetric and assymetric key pairs and certificates. It also manages the infrustracture necessary for the key based credentials such as key repositories.
UMLPackagePathstringCIM::User::SecurityServices
Versionstring2.29.0

Class Properties

Inherited Properties

NameData TypeClass Origin
CaptionstringCIM_ManagedElement
CommunicationStatusuint16CIM_ManagedSystemElement
CreationClassNamestringCIM_Service
DescriptionstringCIM_ManagedElement
DetailedStatusuint16CIM_ManagedSystemElement
ElementNamestringCIM_ManagedElement
EnabledDefaultuint16CIM_EnabledLogicalElement
EnabledStateuint16CIM_EnabledLogicalElement
Generationuint64CIM_ManagedElement
HealthStateuint16CIM_ManagedSystemElement
InstallDatedatetimeCIM_ManagedSystemElement
InstanceIDstringCIM_ManagedElement
NamestringCIM_Service
OperatingStatusuint16CIM_ManagedSystemElement
OtherEnabledStatestringCIM_EnabledLogicalElement
PrimaryOwnerContactstringCIM_Service
PrimaryOwnerNamestringCIM_Service
PrimaryStatusuint16CIM_ManagedSystemElement
RequestedStateuint16CIM_EnabledLogicalElement
StartedbooleanCIM_Service
StartModestringCIM_Service
StatusstringCIM_ManagedSystemElement
SystemCreationClassNamestringCIM_Service
SystemNamestringCIM_Service
TimeOfLastStateChangedatetimeCIM_EnabledLogicalElement
TransitioningToStateuint16CIM_EnabledLogicalElement
AvailableRequestedStatesuint16[]CIM_EnabledLogicalElement
OperationalStatusuint16[]CIM_ManagedSystemElement
StatusDescriptionsstring[]CIM_ManagedSystemElement

Class Methods

Local Class Methods

ImportPublicPrivateKeyPair (uint32)

Method Qualifiers (ImportPublicPrivateKeyPair)

NameData TypeValue
DescriptionstringThis method is called to request an import of public/private key pair. The method is used when assymetric private/public keys are generated elsewhere but are required by the managed system for creation of Certificate Signing Requests (CSRs) or self-signed certificates or any other key based credentials. Upon the successful execution, the PPKPCredential shall be the reference to the CIM_UnsignedCredential instance representing the private/public key pair. The CIM_UnsignedCredential instance shall be associated through CIM_MemberOfCollection association with the instance of CIM_Keystore referenced by the Keystore parameter, and shall be associated through the CIM_AffectsElement association with the method invocation instance of CIM_KeyBasedCredentialManagementService.
ValueMapstring0, 1, 2, 3, 4, 5, 6, .., 4096, 4097..32767, 32768..65535
ValuesstringCompleted with No Error, Not Supported, Error Occured, Busy, Invalid Reference, Invalid Parameter, Access Denied, DMTF Reserved, Job Started, Method Reserved, Vendor Specified

Method Parameters (ImportPublicPrivateKeyPair)

NameTypeQualifiers
NameData TypeValue
Usageuint16
DescriptionstringThe usage of the certificate by the managed element that the certificate is for or is scoped to.
INbooleantrue
ModelCorrespondencestringCIM_CredentialContext.Usage
ValueMapstring2, 3, 4, 6, 7, 8, .., 32768..65535
ValuesstringOwned, Trusted, Trusted for Authentication, Trusted for Authorization, Trusted for Authentication/Authorization, Trusted for Third-Party Authentication/Authorization, DMTF Reserved, Vendor Reserved
PrivateKeystring[]
DescriptionstringThe DER-encoded raw private key.Only the first element of the array property shall be populated.
INbooleantrue
OctetStringbooleantrue
Requiredbooleantrue
PublicKeystring[]
DescriptionstringThe DER-encoded raw public key.Only the first element of the array property shall be populated.
INbooleantrue
OctetStringbooleantrue
Requiredbooleantrue
CredentialContext REF CIM_ManagedElement
DescriptionstringThe managed element that represents the user or owner or the scoping element of the certificate. Such managed element could be the web service that owns the certificate or uses it for verification or account that the certificate is scoped to.
INbooleantrue
Job REF CIM_ConcreteJob
DescriptionstringContains a reference to the ConcreteJob created to track the execution initiated by the method invocation. If method returns 4096 - Job Started, then this parameter shall not be NULL.
INbooleanfalse
OUTbooleantrue
Keystore REF CIM_Keystore
DescriptionstringThe reference to the CIM_Keystore instance representing the key store, which the public/private key pair is imported in to.
INbooleantrue
Requiredbooleantrue
PPKPCredential REF CIM_UnsignedCredential
DescriptionstringThe PPKPCredential output parameter references the instance of CIM_UnsignedCredential that represents the public/private key pair.
INbooleanfalse
OUTbooleantrue
Requiredbooleantrue

CreateKeystore (uint32)

Method Qualifiers (CreateKeystore)

NameData TypeValue
DescriptionstringThis method is called to request a creation of a keystore repository to be used for storage of the key based credentials. Upon the successful execution, the NewKeystore parameter shall reference to the newly created instance of CIM_Keystore. The property values of the newly created instance of the CIM_Keystore shall match all the non-null, non-key properties of the Keystore parameter embedded instance. The newly created CIM_Keystore instance shall be associated to the instance CIM_System referenced by the OwningSystem parameter using CIM_OwningCollectionElement association, shall be associated with the CIM_KeyBasedCredentialManagementService instance using the CIM_ServiceAffectsElement association, and shall be associated to the instances of CIM_Service referenced in the KeystoreUtilizers using CIM_Dependency association.
ValueMapstring0, 1, 2, 3, 4, 5, 6, .., 4096, 4097..32767, 32768..65535
ValuesstringCompleted with No Error, Not Supported, Error Occured, Busy, Invalid Reference, Invalid Parameter, Access Denied, DMTF Reserved, Job Started, Method Reserved, Vendor Specified

Method Parameters (CreateKeystore)

NameTypeQualifiers
NameData TypeValue
Keystorestring
DescriptionstringThe Keystore parameter contains the desired CIM_Keystore instance. The embedded instance shall contain the ElementName and Usage properties.
EmbeddedInstancestringCIM_Keystore
INbooleantrue
Requiredbooleantrue
KeystoreUtilizersCIM_ManagedElement[]
DescriptionstringThe KeystoreUtilizers parameter contains an array of references to the instances of ManagedElement that represent the managed element that would utilize the keystore. Such services could be web services or protocol services that utilize the credentials stored in the keystore for the identity verification purposes.
INbooleantrue
Job REF CIM_ConcreteJob
DescriptionstringContains a reference to the ConcreteJob created to track the execution initiated by the method invocation. If method returns 4096 - Job Started, then this parameter shall not be NULL.
INbooleanfalse
OUTbooleantrue
NewKeystore REF CIM_Keystore
DescriptionstringThe NewKeystore output parameter references the instance of CIM_Keystore that represents the newly created keystore repository.
INbooleanfalse
OUTbooleantrue
Requiredbooleantrue
OwningSystem REF CIM_System
DescriptionstringThe OwningSystem parameter references to the desired CIM_System instance that represents the owning managed system for the keystore.
INbooleantrue
Requiredbooleantrue

Inherited Class Methods

NameReturn TypeClass Origin
ChangeAffectedElementsAssignedSequenceuint32CIM_Service
RequestStateChangeuint32CIM_EnabledLogicalElement
StartServiceuint32CIM_Service
StopServiceuint32CIM_Service