3.10.4.9 ConfigClusterCertV2 (Opnum 14)

  • Article

The ConfigClusterCertV2 method<38> SHOULD store the certificate and cluster secret in an implementation-specific manner on the server.

 HRESULT ConfigClusterCertV2 {
   [ in ] CLUSTER_CERT = CLusterCert,
   [ in ] CLUSTER_CERTTYPE certType
 };

ClusterCert: The certificate and cluster secret for the cluster in which this server is or will be a node. The CLUSTER_CERT structure is defined in section 2.2.23.

CertType: Type of certificate used by the cluster as specified in section 2.2.26.

Return Values: A signed 32-bit value that indicates return status. If the method returns a negative value, it has failed. Zero or positive values indicate success, with the lower 16 bits in positive nonzero values containing warnings or flags defined in the method implementation. For more information about Win32 error codes and HRESULT values, see [MS-ERREF] sections 2.1 and 2.2.

Return value/code

Description

0x00000000

S_OK

The call was successful.

For any other condition, this method MUST return a value that is not one of the values listed in the preceding table. The client MUST behave in one consistent, identical manner for all values that are not listed in the preceding table.

Exceptions Thrown: No exceptions are thrown beyond those thrown by the underlying RPC protocol [MS-RPCE].

The opnum field value for this method is 14.

When processing this call, if CertType is Cluster_SChannel or ClusterSet_SChannel, the server MUST store the certificate and cluster secret such that it persists across reboots and does not change except as part of processing a subsequent ConfigClusterCertV2 method call. If CertType is Cluster_PKU2U or ClusterSet_PKU2U, the server MUST store the certificate in the PKU2U local root store. The server SHOULD store the private key of the certificate and cluster secret in a secure way.