3.1.4.1.3.2 DiscoveryResponse

The <DiscoveryResponse> complex type describes the information to send to the client in the <DiscoverResponse> request element (section 3.1.4.1.2.2).

Namespace: http://schemas.microsoft.com/windows/management/2012/01/enrollment

 <xsd:complexType name="DiscoveryResponse">
   <xsd:sequence>
     <xsd:element minOccurs="0" maxOccurs="1" name="AuthPolicy" nillable="true" type="xsd:string"/>
     <xsd:element minOccurs="0" maxOccurs="1" name="AuthenticationServiceUrl" nillable="true" type="xsd:string"/>
     <xsd:element minOccurs="0" maxOccurs="1" name="EnrollmentPolicyServiceUrl" nillable="true" type="xsd:string"/>
     <xsd:element minOccurs="0" maxOccurs="1" name="EnrollmentServiceUrl" nillable="true" type="xsd:string"/>
   </xsd:sequence>
 </xsd:complexType>

AuthPolicy: The value of <AuthPolicy> MUST be the string "Federated".

AuthenticationServiceUrl: The value of <AuthenticationServiceUrl> MUST be the name of the STS from which the client will retrieve a security token.

EnrollmentPolicyServiceUrl: The value of <EnrollmentPolicyServiceUrl> MUST be the address of the DS against which the X.509 Certificate Enrollment Policy Protocol [MS-XCEP] operations are performed.

EnrollmentServiceUrl: The value of <EnrollmentServiceUrl> MUST be the address of the DS against which the WS-Trust X.509v3 Token Enrollment Extensions [MS-WSTEP] operations are performed.