105 lines
3.9 KiB
Plaintext
105 lines
3.9 KiB
Plaintext
// Copyright (c) 2007-2010, Intel Corporation. All rights reserved.
|
|
[Version ( "4.0.0" ),
|
|
Description (
|
|
"This class represents a 802.1X profile in the Intel(R) AMT system."
|
|
)]
|
|
class AMT_8021XProfile : CIM_SettingData {
|
|
|
|
[Required, Description (
|
|
"Indicates whether the 802.1x profile is enabled." )]
|
|
boolean Enabled;
|
|
|
|
[Description (
|
|
"Indicates the activity setting of the 802.1X module in "
|
|
"S0 state. The default value for this property is \'true\'."
|
|
)]
|
|
boolean ActiveInS0;
|
|
|
|
[Description (
|
|
"Identifies the authentication protocol used to "
|
|
"authenticate the access requestor to the AAA server." ),
|
|
ValueMap { "0", "1", "2", "3", "4", "5", "6" },
|
|
Values { "TLS", "TTLS_MSCHAPv2", "PEAP_MSCHAPv2", "EAP_GTC",
|
|
"EAPFAST_MSCHAPv2", "EAPFAST_GTC", "EAPFAST_TLS" }]
|
|
uint16 AuthenticationProtocol;
|
|
|
|
[Description (
|
|
"A string presented to the authentication server in "
|
|
"802.1x protocol exchange. The AAA server determines the "
|
|
"format of this string. Formats supported by AAA servers "
|
|
"include: username@domain." ),
|
|
MaxLen ( 80 )]
|
|
string RoamingIdentity;
|
|
|
|
[Description (
|
|
"The name compared against the subject name field in the "
|
|
"certificate provided by the AAA server. This name is "
|
|
"either the full name of the AAA server, in which case "
|
|
"ServerCertificateNameComparison is set to \"FullName\", "
|
|
"or it is the domain suffix of the AAA server, in which "
|
|
"case ServerCertificateNameComparison is set to "
|
|
"\"DomainSuffix\"" ),
|
|
MaxLen ( 80 )]
|
|
string ServerCertificateName;
|
|
|
|
[Description (
|
|
"Determines the comparison algorithm used between the "
|
|
"ServerCertificateName value and the subject name field "
|
|
"of the certificate presented by the AAA server." ),
|
|
ValueMap { "0", "1" },
|
|
Values { "FullName", "DomainSuffix" }]
|
|
uint16 ServerCertificateNameComparison;
|
|
|
|
[Description (
|
|
"Within the domain specified by Domain, Identifies the "
|
|
"user that is requesting access to the network." ),
|
|
MaxLen ( 512 )]
|
|
string Username;
|
|
|
|
[Description (
|
|
"The password associated with the user identified by "
|
|
"Username and Domain." ),
|
|
MaxLen ( 32 )]
|
|
string Password;
|
|
|
|
[Description ( "The domain within which Username is unique." ),
|
|
MaxLen ( 128 )]
|
|
string Domain;
|
|
|
|
[Description (
|
|
"A credential used by the supplicant and AAA server to "
|
|
"establish a mutually authenticated encrypted tunnel for "
|
|
"confidential user authentication." ),
|
|
OctetString]
|
|
uint8 ProtectedAccessCredential[];
|
|
|
|
[Description (
|
|
"Optional password to extract the PAC (Protected Access "
|
|
"Credential)information from the PAC data." )]
|
|
string PACPassword;
|
|
|
|
[Description (
|
|
"The client certificate that should be used by the profile."
|
|
)]
|
|
AMT_PublicKeyCertificate REF ClientCertificate;
|
|
|
|
[Description (
|
|
"The trusted root CA that should be used while verifying "
|
|
"the server certificate." )]
|
|
AMT_PublicKeyCertificate REF ServerCertificateIssuer;
|
|
|
|
[Description (
|
|
"Timeout in seconds, in which the Intel(R) AMT will hold "
|
|
"an authenticated 802.1X session. During the defined "
|
|
"period, Intel(R) AMT manages the 802.1X negotiation "
|
|
"while a PXE boot takes place. After the timeout, control "
|
|
"of the negotiation passes to the host. \n"
|
|
"The maximum value is 86400 seconds (one day).\n"
|
|
"A value of 0 disables the feature. \n"
|
|
"If this optional value is omitted, Intel(R) AMT sets a "
|
|
"default value of 120 seconds." )]
|
|
uint32 PxeTimeout;
|
|
|
|
|
|
};
|