2.2.4.1 AuthenticationType Complex Type
This type MUST be used to indicate the credentials to be used by the Event Source when delivering events. This type is used under the namespace http://schemas.dmtf.org/wbem/wsman/1/wsman.xsd.
The schema MUST be as shown here.
-
<xs:complexType name="ThumbprintType"> <xs:simpleContent> <xs:extension base="xs:string"> <xs:attribute name="Role" type="xs:string" use="required"/> </xs:extension> </xs:simpleContent> </xs:complexType> <xs:complexType name="ClientCertificateType"> <xs:sequence> <xs:element name="Thumbprint" type="ThumbprintType"/> </xs:sequence> </xs:complexType> <xs:complexType name="AuthenticationType"> <xs:sequence> <xs:element name="ClientCertificate" type="ClientCertificateType" minOccurs="0" /> </xs:sequence> <xs:attribute name="Profile" type="xs:anyURI" use="required" /> </xs:complexType>
Role: Identifies whether the thumbprint is directly tied to the client certificate (value of certificate) or to the issuer of the certificate (value of issuer). If not present, the default value is certificate. <2>
Thumbprint: Identifies the issuer certificate by its thumbprint.
ClientCertificate: A set of constraints on the client certificate. The policy assertion can have multiple ClientCertificate elements, in which case the server can choose a certificate that matches any set of constraints. This element MUST be present when using Certificate Authentication, and MUST NOT be present when using Kerberos authentication.
Profile: The security profile being used. This attribute MUST be equal to either http://schemas.dmtf.org/wbem/wsman/1/wsman/secprofile/https/mutual or http://schemas.dmtf.org/wbem/wsman/1/wsman/secprofile/http/mutual when using Certificate Authentication, and MUST be equal to either http://schemas.dmtf.org/wbem/wsman/1/wsman/secprofile/http/spnego-kerberos or http://schemas.dmtf.org/wbem/wsman/1/wsman/secprofile/https/spnego-kerberos when using Kerberos authentication. This attribute MUST NOT be equal to any other security profile.