4.1.2 Server RequestSecurityToken Response

Note   The ActivityId element is defined in [MS-NETTR] section 2.2.3.

 <s:Envelope 
   xmlns:s="http://www.w3.org/2003/05/soap-envelope"
   xmlns:a="http://www.w3.org/2005/08/addressing">
   <s:Header>
     <a:Action s:mustUnderstand="1">
       http://schemas.microsoft.com/windows/pki/2009/01/enrollment/RSTRC/wstep
     </a:Action>
     <ActivityId 
       CorrelationId="0e09fc40-373c-41ee-933a-0e085270a081"
       xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics">
       8cca3c03-1ef1-4ecc-83cd-3201fd775596
     </ActivityId>
     <a:RelatesTo>
       urn:uuid:0d5a1441-5891-453b-becf-a2e5f6ea3749
     </a:RelatesTo>
   </s:Header>
   <s:Body>
     <RequestSecurityTokenResponseCollection xmlns="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
       <RequestSecurityTokenResponse>
         <TokenType>
           http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentToken
         </TokenType>
         <RequestedSecurityToken>
           <BinarySecurityToken             ValueType="http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentProvisionDoc" 
             EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd#base64binary" 
             xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
             PHdhcC1wcm92aXNpb25pbmdkb2MgdmVyc2lvbj0iMS4xIj4
             NCiAgPGNoYXJhY3RlcmlzdGljIHR5cGU9IkNlcnRpZmljYX
             RlU3RvcmUiPg0KICAgIDxjaGFyYWN0ZXJpc3RpYyB0eXBlP
             SJNeSI+DQogICAgICA8Y2hhcmFjdGVyaXN0aWMgdHlwZT0i
             VXNlciI+DQogICAgICAgIDxjaGFyYWN0ZXJpc3RpYyB0eXB
             lPSJDQjIxMUMxMjQ5MjI5MEU5OUU5OTczOTg5REY3NDk1QT
             AwMzIwMTc3Ij4NCiAgICAgICAgICA8cGFybSBuYW1lPSJFb
             mNvZGVkQ2VydGlmaWNhdGUiIHZhbHVlPSJNSUlFUWpDQ0F5
             NmdBd0lCQWdJUXFWVnRnNEV4MHJaT3o4UkU0MlVqaGpBSkJ
             nVXJEZ01DSFFVQU1JR01NWUdKTUJFR0NnbVNKb21UOGl4a0
             FSa1dBMk52YlRBUkJnb0praWFKay9Jc1pBRVpGZ056ZEhNd
             0ZRWUtDWkltaVpQeUxHUUJHUllIWTI5dWRHOXpiekFkQmdO
             VkJBTVRGazFUTFU5eVoyRnVhWHBoZEdsdmJpMUJZMk5sYzN
             Nd0t3WURWUVFMRXlSak1URTBaVFF5T0MwMU1tVTJMVFJtWk
             RJdE9EVmpNQzFsT0RnNU5ERTJZVE5pTWpVd0hoY05NVE13T
             kRFNE1qQXpPRFUwV2hjTk1qTXdOREUyTWpBME16VTBXakF2
             TVMwd0t3WURWUVFERXlReE1EaGhOVE0xTVMxbU9EbGpMVFE
             yTldFdE9UaGpaUzA0TldZMFpXUXhNekppWXprd2dnRWlNQT
             BHQ1NxR1NJYjNEUUVCQVFBQUE0SUJEd0F3Z2dFS0FvSUJBU
             UM2NnI4b2NTazNJUk9TT1MvM1JZNTR4dHVXcThzeFptQ2RD
             U1crbWIybVhybm1tU2hRQ2NnaG1STmNhdEVzQjJDdmEwNzE
             xa29teGVwbDFzT2p5ZW1jbmRpeEk4NEVBUm5lNGxQcjdXOE
             VjdTI1bUlDUkRBaUMyM2FXbTYyR0lQeUVFUVVLVkNIdjBzW
             jhDb3RFWFNBOWpkRStpTUpMU1l3bGlYa1NPc2E5d28rK0RG
             UGNLNnpFaWR6U21uOTNnK29zTEJHTEZOTEJIdG9vN0lzOUQ
             4ZmdJNW5MZlZKS3ZWUzVwTitEeUNoRitVYzBXR3AzN0lSRz
             YrMU94ai9ZR1NtY2lKdlpIMlkwU3RPZXl3N21BaWpUYzFkb
             1JYY1pFL05UMkw1NXFHQ3duamFXRFVpVTBmeG4yR0RKRTA5
             eEdWVzZNVGZLRXdGMEM4SDZsQ24yRVRiekFnTUJBQUdCRVF
             CKzB0SXJ5dEZ2UlpLT1IzT3V1d1ZSZ2hFQVVWT0tFSno0V2
             thWXpvWDA3Uk1yeWFPQjNUQ0IyakFNQmdOVkhSTUJBZjhFQ
             WpBQU1Cd0dDQ3FHU0liM0ZBVUdCQkJxcldQMUNsZTJUcWRD
             b05ZS3lXNThNQndHQ0NxR1NJYjNGQVVDQkJENHBwWUxocXN
             LUTVqenZaUEtoZUlITUJ3R0NDcUdTSWIzRkFVRUJCQlJVNG
             9RblBoYVJwak9oZlR0RXl2Sk1Cd0dDQ3FHU0liM0ZBVUZCQ
             kFxb3pVZWdtaVdRWVlveitvcTd3TDlNQllHQTFVZEpRRUIv
             d1FNTUFvR0NDc0dBUVVGQndNQ01Cd0dDQ3FHU0liM0ZBVUh
             CQkRjcnFwTkoxR1hTYmdsbEcyRHNxeG1NQndHQ0NxR1NJYj
             NGQVVLQkJEelFSZzVXcjE3UnBWY0hVdTEzcWVHTUFrR0JTc
             09Bd0lkQlFBRGdnRUJBSXAxTTh6bE5CSytVRnNYbzNZTDhB
             eDNSSU9ZcHg1Z1JMdnZhSXZUOWdZUUdiU25NZWozR0N1cWl
             xVHMyc1h0b2Rnb2J5Y1lVeElxTjcxcXgvYmJEbW9iMHpFeE
             dOY3QzNFNaUGkrNVE4V3RhNUJpaFA2QTJKMHk5cUdDam5sZ
             kk2dW1TUC9EQnhsUEg3REVkVzI4VjhJaFBIK3F3Z1Bla0NI
             VzVUVU8ycGdXc0wyaDllT2JmMit1YVI1cTQ5Nk1xR05NQUd
             SVDF0WFNqZUdKZGxhUS93aldldkhISWo3N09jTlJkZXhoN0
             1YalpVNThEMngvdmdVMWY1TmRzdzViYmZ5cCsrTEZOUGZjc
             FY3Q3VqSEU0TEk5T01NcHpCS0x4Q200cGdLS01DVnJLdjk5
             RUZWbFB3STc4RFlZSjhnRUhEbU4rbDRtRk1talcrWUM5NDN
             2Qy9NPSIgLz4NCiAgICAgICAgPC9jaGFyYWN0ZXJpc3RpYz
             4NCiAgICAgIDwvY2hhcmFjdGVyaXN0aWM+DQogICAgPC9ja
             GFyYWN0ZXJpc3RpYz4NCiAgPC9jaGFyYWN0ZXJpc3RpYz4N
             Cjwvd2FwLXByb3Zpc2lvbmluZ2RvYz4=
           </BinarySecurityToken>
         </RequestedSecurityToken>
         <RequestID xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollment">0</RequestID>
         <AdditionalContext 
           xmlns="http://schemas.xmlsoap.org/ws/2006/12/authorization">
           <ContextItem Name="UserPrincipalName">
             <Value>dan@contoso.com</Value>
           </ContextItem>
         </AdditionalContext>
       </RequestSecurityTokenResponse>
     </RequestSecurityTokenResponseCollection>
   </s:Body>
 </s:Envelope>