2.2.9.5 w7 APPLICATION Configuration Service Provider

The APPLICATION configuration service provider that has an APPID of w7 is used for bootstrapping a device with an OMA DM account. Although this configuration service provider is used to set up an OMA DM account, it is managed over OMA Client Provisioning.

Note: All parameter names and characteristic types are case sensitive and MUST use all uppercase. Both APPSRV and CLIENT credentials MUST be provided in the provisioning XML.

The following diagram shows the w7 APPLICATION configuration service provider in tree format.

The w7 APPLICATION configuration service provider in tree format

Figure 7: The w7 APPLICATION configuration service provider in tree format

APPADDR: This characteristic is used in the w7 APPLICATION characteristic to specify the DM server address.

APPADDR/ADDR: Optional. The ADDR parameter is used in the APPADR characteristic to get or set the address of the OMA DM server. This parameter takes a string value.

APPADDR/ADDRTYPE: Optional. The ADDRTYPE parameter is used in the APPADDR Characteristic to get or set the format of the ADDR parameter. This parameter takes a string value.
In OMA DM XML, if there are multiple instances of this parameter, the first valid parameter value is used.

APPADDR/PORT: This characteristic is used in the APPADDR characteristic to specify port information.

APPADDR/PORT/PORTNBR: Required. The PORTNBR parameter is used in the PORT characteristic to get or set the number of the port to connect to. This parameter takes a numeric value in string format.

APPAUTH: This characteristic is used in the w7 APPLICATION characteristic to specify authentication information. This node is optional for MAM.<12> If this is not specified, it is assumed that transport-level authentication will be used.

APPAUTH/AAUTHDATA: Optional. The AAUTHDATA parameter is used in the APPAUTH characteristic to get or set additional data used in authentication. This parameter is used to convey the nonce for digest authentication type. This parameter takes a string value. The value of this parameter is a base64-encoded string in the form of a series of bytes. Note that if the AAUTHTYPE is DIGEST, this is used as a nonce value in the MD5 hash calculation, and the octal form of the binary data is used to calculate the hash at the server side and device side.

APPAUTH/AAUTHLEVEL: Required. The AAUTHLEVEL parameter is used in the APPAUTH characteristic to indicate whether credentials are for server authentication or client authentication. This parameter takes a string value. Implementers can set this value.

Valid values:

  • APPSRV - Specifies that the client authenticates itself to the OMA DM Server at the DM protocol level.

  • CLIENT - Specifies that the server authenticates itself to the OMA DM Client at the DM protocol level.

APPAUTH/AAUTHNAME: Optional. The AAUTHNAME parameter is used in the APPAUTH characteristic to differentiate OMA DM client names. This parameter takes a string value. Implementers can set this value.

APPAUTH/AAUTHSECRET: Required. The AAUTHSECRET parameter is used in the APPAUTH characteristic to get or set the authentication secret used to authenticate the user. This parameter takes a string value.

APPAUTH/AAUTHTYPE: Optional. The AAUTHTYPE parameter of the APPAUTH characteristic is used to get or set the method of authentication. This parameter takes a string value.

Valid values:

  • BASIC - Specifies the SyncML DM 'syncml:auth-basic' authentication type.

  • DIGEST - Specifies the SyncML DM 'syncml:auth-md5' authentication type.

When AAUTHLEVEL is CLIENT, AAUTHTYPE MUST contain DIGEST. When AAUTHLEVEL is APPSRV, AAUTHTYPE can be BASIC or DIGEST.

APPID: Required. The APPID parameter is used in the APPLICATION characteristic to differentiate the types of available application services and protocols. This parameter takes a string value. Implementers can get or set this value. The only valid value to configure the OMA Client Provisioning bootstrap APPID is w7.

BACKCOMPATRETRYDISABLED: Optional. The BACKCOMPATRETRYDISABLED parameter is used in the APPLICATION characteristic to specify whether to retry resending a package with an older protocol version (for example, 1.1) in the SyncHdr (not including the first time).

Note: This parameter does not contain a value. The existence of this parameter means backward compatibility retry is disabled. If the parameter is missing, it means backward compatibility retry is enabled.

CONNRETRYFREQ: Optional. The CONNRETRYFREQ parameter is used in the APPLICATION characteristic to specify how many retries the device management client performs when there are Connection Manager-level or WinInet-level errors. This parameter takes a numeric value in string format. The default value is "3". Implementers can set this parameter.

DEFAULTENCODING: Optional. The DEFAULTENCODING parameter is used in the APPLICATION characteristic to specify whether the device management client uses WBXML or XML for the DM package when communicating with the server. Implementers can get or set this parameter.

The valid values are:

  • application/vnd.syncml.dm+xml (Default)

  • application/vnd.syncml.dm+wbxml

INIT: Optional. The INIT parameter is used in the APPLICATION characteristic to indicate that the management server wants the client to initiate a management session immediately after settings approval. If the current w7 APPLICATION document will be put in ROM, the INIT parameter MUST not be present.

Note: This parameter is only for mobile operators and MDM servers that try to use this will fail. This parameter forces the device to attempt to connect with the OMA DM server. The connection attempt fails if the XML is set during the coldinit phase. A common cause of this failure is that immediately after coldinit is finished the radio is not yet ready.

INITIALBACKOFFTIME: Optional. The INITIALBACKOFFTIME parameter is used in the APPLICATION characteristic to specify the initial wait time in milliseconds when the device management client retries for the first time. The wait time grows exponentially. This parameter takes a numeric value in string format. The default value is "16000". Implementers can get or set this parameter.

MAXBACKOFFTIME: Optional. The MAXBACKOFFTIME parameter is used in the APPLICATION characteristic to specify the maximum number of milliseconds to sleep after package-sending failure. This parameter takes a numeric value in string format. The default value is "86400000". Implementers can set this parameter.

NAME: Optional. The NAME parameter is used in the APPLICATION characteristic to specify a user readable application identity. This parameter is used to define part of the registry path for the APPLICATION parameters. Implementers can set this parameter.
The NAME parameter can be a string or null (no value). If no value is specified, the registry location will default to <unnamed>.

PROTOVER: Optional. The PROTOVER parameter is used in the APPLICATION characteristic to specify the OMA DM Protocol version the server supports. No default value is assumed. The protocol version set by this node will match the protocol version that the device management client reports to the server in SyncHdr in package 1. If this node is not specified when adding a DM server account, the latest DM protocol version that the client supports is used. This is a Microsoft custom parameter. Implementers can set this parameter.

Possible values:

  • 1.1

  • 1.2

PROVIDER-ID: Optional. The PROVIDER-ID parameter is used in the APPLICATION characteristic to differentiate OMA DM servers. It specifies the server identifier for a management server used in the current management session. This parameter takes a string value. Implementers can set this parameter.

ROLE: Optional. The ROLE parameter is used in the APPLICATION characteristic to specify the security application chamber that the DM session runs with when communicating with the DM server. The only supported roles are 8 (mobile operator) and 32 (enterprise). If this parameter is not present, the mobile operator role is assumed. The enterprise role can only be set by the enterprise enrollment client. The enterprise client cannot set the mobile operator role. This is a Microsoft custom parameter. This parameter takes a numeric value in string format. Implementers can get or set this parameter.

TO-NAPID: Optional. The TO-NAPID parameter is used in the APPLICATION characteristic to specify the Network Access Point the client will use to connect to the OMA DM server. If multiple TO-NAPID parameters are specified, only the first TO-NAPID value will be stored. This parameter takes a string value. Implementers can set this parameter.

USEHWDEVID: Optional. The USEHWDEVID parameter is used in the APPLICATION characteristic to specify use of device hardware identification. It does not have a value.
If the parameter is not present, the default behavior is to use an application-specific GUID rather than the hardware device ID.

If the parameter is present, the hardware device ID will be provided at the ./DevInfo/DevID node and in the Source LocURI for the DM package sent to the server. International Mobile Subscriber Identity (IMEI) is returned for a GSM device.

SSLCLIENTCERTSEARCHCRITERIA: Optional. The SSLCLIENTCERTSEARCHCRITERIA parameter is used in the APPLICATION characteristic to specify the client certificate search criteria. This parameter supports search by subject attribute and certificate stores. If any other criteria are provided, it is ignored.

The string is a concatenation of name/value pairs, each member of the pair delimited by the "&" character. The name and values are delimited by the "=" character. If there are multiple values, each value is delimited by the Unicode character "U+F000". If the name or value contains characters not in the UNRESERVED set (as specified in RFC2396), then those characters are URI-escaped according to the RFC.

The supported names are Subject and Stores; wildcard certificate search is not supported.
Stores specifies which certificate stores the device management client will search to find the SSL client certificate. The valid store value is My%5CUser. The store name is not case-sensitive.

Note: %EF%80%80 is the UTF8-encoded character U+F000.

Subject specifies the certificate to search for. For example, to specify a certificate with a particular Subject attribute ("CN=Tester,O=Microsoft"), implementers can use the following:

 <parm name="SSLCLIENTCERTSEARCHCRITERIA" 
    value="Subject=CN%3DTester,O%3DMicrosoft&amp;Stores=My%5CUser" />