4.1.2 Server RequestSecurityToken Response
Note The ActivityId element is defined in [MS-NETTR] section 2.2.3.
-
<s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://www.w3.org/2005/08/addressing"> <s:Header> <a:Action s:mustUnderstand="1"> http://schemas.microsoft.com/windows/pki/2009/01/enrollment/RSTRC/wstep </a:Action> <ActivityId CorrelationId="0e09fc40-373c-41ee-933a-0e085270a081" xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"> 8cca3c03-1ef1-4ecc-83cd-3201fd775596 </ActivityId> <a:RelatesTo> urn:uuid:0d5a1441-5891-453b-becf-a2e5f6ea3749 </a:RelatesTo> </s:Header> <s:Body> <RequestSecurityTokenResponseCollection xmlns="http://docs.oasis-open.org/ws-sx/ws-trust/200512"> <RequestSecurityTokenResponse> <TokenType> http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentToken </TokenType> <RequestedSecurityToken> <BinarySecurityToken ValueType="http://schemas.microsoft.com/5.0.0.0/ConfigurationManager/Enrollment/DeviceEnrollmentProvisionDoc" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd#base64binary" xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> PHdhcC1wcm92aXNpb25pbmdkb2MgdmVyc2lvbj0iMS4xIj4 NCiAgPGNoYXJhY3RlcmlzdGljIHR5cGU9IkNlcnRpZmljYX RlU3RvcmUiPg0KICAgIDxjaGFyYWN0ZXJpc3RpYyB0eXBlP SJNeSI+DQogICAgICA8Y2hhcmFjdGVyaXN0aWMgdHlwZT0i VXNlciI+DQogICAgICAgIDxjaGFyYWN0ZXJpc3RpYyB0eXB lPSJDQjIxMUMxMjQ5MjI5MEU5OUU5OTczOTg5REY3NDk1QT AwMzIwMTc3Ij4NCiAgICAgICAgICA8cGFybSBuYW1lPSJFb mNvZGVkQ2VydGlmaWNhdGUiIHZhbHVlPSJNSUlFUWpDQ0F5 NmdBd0lCQWdJUXFWVnRnNEV4MHJaT3o4UkU0MlVqaGpBSkJ nVXJEZ01DSFFVQU1JR01NWUdKTUJFR0NnbVNKb21UOGl4a0 FSa1dBMk52YlRBUkJnb0praWFKay9Jc1pBRVpGZ056ZEhNd 0ZRWUtDWkltaVpQeUxHUUJHUllIWTI5dWRHOXpiekFkQmdO VkJBTVRGazFUTFU5eVoyRnVhWHBoZEdsdmJpMUJZMk5sYzN Nd0t3WURWUVFMRXlSak1URTBaVFF5T0MwMU1tVTJMVFJtWk RJdE9EVmpNQzFsT0RnNU5ERTJZVE5pTWpVd0hoY05NVE13T kRFNE1qQXpPRFUwV2hjTk1qTXdOREUyTWpBME16VTBXakF2 TVMwd0t3WURWUVFERXlReE1EaGhOVE0xTVMxbU9EbGpMVFE yTldFdE9UaGpaUzA0TldZMFpXUXhNekppWXprd2dnRWlNQT BHQ1NxR1NJYjNEUUVCQVFBQUE0SUJEd0F3Z2dFS0FvSUJBU UM2NnI4b2NTazNJUk9TT1MvM1JZNTR4dHVXcThzeFptQ2RD U1crbWIybVhybm1tU2hRQ2NnaG1STmNhdEVzQjJDdmEwNzE xa29teGVwbDFzT2p5ZW1jbmRpeEk4NEVBUm5lNGxQcjdXOE VjdTI1bUlDUkRBaUMyM2FXbTYyR0lQeUVFUVVLVkNIdjBzW jhDb3RFWFNBOWpkRStpTUpMU1l3bGlYa1NPc2E5d28rK0RG UGNLNnpFaWR6U21uOTNnK29zTEJHTEZOTEJIdG9vN0lzOUQ 4ZmdJNW5MZlZKS3ZWUzVwTitEeUNoRitVYzBXR3AzN0lSRz YrMU94ai9ZR1NtY2lKdlpIMlkwU3RPZXl3N21BaWpUYzFkb 1JYY1pFL05UMkw1NXFHQ3duamFXRFVpVTBmeG4yR0RKRTA5 eEdWVzZNVGZLRXdGMEM4SDZsQ24yRVRiekFnTUJBQUdCRVF CKzB0SXJ5dEZ2UlpLT1IzT3V1d1ZSZ2hFQVVWT0tFSno0V2 thWXpvWDA3Uk1yeWFPQjNUQ0IyakFNQmdOVkhSTUJBZjhFQ WpBQU1Cd0dDQ3FHU0liM0ZBVUdCQkJxcldQMUNsZTJUcWRD b05ZS3lXNThNQndHQ0NxR1NJYjNGQVVDQkJENHBwWUxocXN LUTVqenZaUEtoZUlITUJ3R0NDcUdTSWIzRkFVRUJCQlJVNG 9RblBoYVJwak9oZlR0RXl2Sk1Cd0dDQ3FHU0liM0ZBVUZCQ kFxb3pVZWdtaVdRWVlveitvcTd3TDlNQllHQTFVZEpRRUIv d1FNTUFvR0NDc0dBUVVGQndNQ01Cd0dDQ3FHU0liM0ZBVUh CQkRjcnFwTkoxR1hTYmdsbEcyRHNxeG1NQndHQ0NxR1NJYj NGQVVLQkJEelFSZzVXcjE3UnBWY0hVdTEzcWVHTUFrR0JTc 09Bd0lkQlFBRGdnRUJBSXAxTTh6bE5CSytVRnNYbzNZTDhB eDNSSU9ZcHg1Z1JMdnZhSXZUOWdZUUdiU25NZWozR0N1cWl xVHMyc1h0b2Rnb2J5Y1lVeElxTjcxcXgvYmJEbW9iMHpFeE dOY3QzNFNaUGkrNVE4V3RhNUJpaFA2QTJKMHk5cUdDam5sZ kk2dW1TUC9EQnhsUEg3REVkVzI4VjhJaFBIK3F3Z1Bla0NI VzVUVU8ycGdXc0wyaDllT2JmMit1YVI1cTQ5Nk1xR05NQUd SVDF0WFNqZUdKZGxhUS93aldldkhISWo3N09jTlJkZXhoN0 1YalpVNThEMngvdmdVMWY1TmRzdzViYmZ5cCsrTEZOUGZjc FY3Q3VqSEU0TEk5T01NcHpCS0x4Q200cGdLS01DVnJLdjk5 RUZWbFB3STc4RFlZSjhnRUhEbU4rbDRtRk1talcrWUM5NDN 2Qy9NPSIgLz4NCiAgICAgICAgPC9jaGFyYWN0ZXJpc3RpYz 4NCiAgICAgIDwvY2hhcmFjdGVyaXN0aWM+DQogICAgPC9ja GFyYWN0ZXJpc3RpYz4NCiAgPC9jaGFyYWN0ZXJpc3RpYz4N Cjwvd2FwLXByb3Zpc2lvbmluZ2RvYz4= </BinarySecurityToken> </RequestedSecurityToken> <RequestID xmlns="http://schemas.microsoft.com/windows/pki/2009/01/enrollment">0</RequestID> <AdditionalContext xmlns="http://schemas.xmlsoap.org/ws/2006/12/authorization"> <ContextItem Name="UserPrincipalName"> <Value>dan@contoso.com</Value> </ContextItem> </AdditionalContext> </RequestSecurityTokenResponse> </RequestSecurityTokenResponseCollection> </s:Body> </s:Envelope>