// Copyright (c) 2007-2010, Intel Corporation. All rights reserved. 
   [Version ( "4.0.0" ), 
    Description ( 
       "This class represents a 802.1X profile in the Intel(R) AMT system."
        )]
class AMT_8021XProfile : CIM_SettingData {

      [Required, Description ( 
          "Indicates whether the 802.1x profile is enabled." )]
   boolean Enabled;

      [Description ( 
          "Indicates the activity setting of the 802.1X module in "
          "S0 state. The default value for this property is \'true\'."
           )]
   boolean ActiveInS0;

      [Description ( 
          "Identifies the authentication protocol used to "
          "authenticate the access requestor to the AAA server." ), 
       ValueMap { "0", "1", "2", "3", "4", "5", "6" }, 
       Values { "TLS", "TTLS_MSCHAPv2", "PEAP_MSCHAPv2", "EAP_GTC", 
          "EAPFAST_MSCHAPv2", "EAPFAST_GTC", "EAPFAST_TLS" }]
   uint16 AuthenticationProtocol;

      [Description ( 
          "A string presented to the authentication server in "
          "802.1x protocol exchange. The AAA server determines the "
          "format of this string. Formats supported by AAA servers "
          "include: username@domain." ), 
       MaxLen ( 80 )]
   string RoamingIdentity;

      [Description ( 
          "The name compared against the subject name field in the "
          "certificate provided by the AAA server. This name is "
          "either the full name of the AAA server, in which case "
          "ServerCertificateNameComparison is set to \"FullName\", "
          "or it is the domain suffix of the AAA server, in which "
          "case ServerCertificateNameComparison is set to "
          "\"DomainSuffix\"" ), 
       MaxLen ( 80 )]
   string ServerCertificateName;

      [Description ( 
          "Determines the comparison algorithm used between the "
          "ServerCertificateName value and the subject name field "
          "of the certificate presented by the AAA server." ), 
       ValueMap { "0", "1" }, 
       Values { "FullName", "DomainSuffix" }]
   uint16 ServerCertificateNameComparison;

      [Description ( 
          "Within the domain specified by Domain, Identifies the "
          "user that is requesting access to the network." ), 
       MaxLen ( 512 )]
   string Username;

      [Description ( 
          "The password associated with the user identified by "
          "Username and Domain." ), 
       MaxLen ( 32 )]
   string Password;

      [Description ( "The domain within which Username is unique." ), 
       MaxLen ( 128 )]
   string Domain;

      [Description ( 
          "A credential used by the supplicant and AAA server to "
          "establish a mutually authenticated encrypted tunnel for "
          "confidential user authentication." ), 
       OctetString]
   uint8 ProtectedAccessCredential[];

      [Description ( 
          "Optional password to extract the PAC (Protected Access "
          "Credential)information from the PAC data." )]
   string PACPassword;

      [Description ( 
          "The client certificate that should be used by the profile."
           )]
   AMT_PublicKeyCertificate REF ClientCertificate;

      [Description ( 
          "The trusted root CA that should be used while verifying "
          "the server certificate." )]
   AMT_PublicKeyCertificate REF ServerCertificateIssuer;

      [Description ( 
          "Timeout in seconds, in which the Intel(R) AMT will hold "
          "an authenticated 802.1X session. During the defined "
          "period, Intel(R) AMT manages the 802.1X negotiation "
          "while a PXE boot takes place. After the timeout, control "
          "of the negotiation passes to the host. \n"
          "The maximum value is 86400 seconds (one day).\n"
          "A value of 0 disables the feature. \n"
          "If this optional value is omitted, Intel(R) AMT sets a "
          "default value of 120 seconds." )]
   uint32 PxeTimeout;


};