Class AMT_PublicKeyCertificate

Used in features: Endpoint Access Control , Security Administration , Remote Access & User Initiated
Compatible with the following Intel AMT Releases: 3.0, 3.2, 4.0, 5.0, 5.1, 6.0, 6.1, 6.2, 7.0, 8.0, 8.1, 9.0, 9.5, 10.0, 11.0
CIM_ManagedElement
   extended by CIM_Credential
      extended by AMT_PublicKeyCertificate


class AMT_PublicKeyCertificate
extends CIM_Credential

General Information:
This class represents a X.509 Certificate in the Intel(R) AMT CertStore.

Product Specific Usage:
Instances of this class can be created using the AMT_PublicKeyManagementService.AddCertificate and AMT_PublicKeyManagementService.AddTrustedRootCertificate methods.
A certificate cannot be deleted while it is being used by any service (TLS/EAC).

Qualifiers:
-------------
Version=6.0.0


Supported Fields Summary
 string ElementName
A user-friendly name for the object . . .
 string InstanceID Key
Within the scope of the instantiating Namespace, InstanceID opaquely and uniquely identifies an instance of this class.
 uint8[4100] X509Certificate
The X.509 Certificate blob.
 boolean TrustedRootCertficate
For root certificate [that were added by AMT_PublicKeyManagementService.AddTrustedRootCertificate()]this property will be true.
 string Issuer
The Issuer field of this certificate.
 string Subject
The Subject field of this certificate.
 boolean ReadOnlyCertificate
Indicates whether the certificate is an Intel AMT self-signed certificate. If True, the certificate cannot be deleted.

Methods Summary
  Put(Instance)
Changes properties of the selected instance
  Get(Instance)
Gets the representation of the instance
  Delete()
Deletes an instance
  Pull(EnumerationContext, MaxElements)
Pulls instances of this class, following an Enumerate operation
  Enumerate()
Enumerates the instances of this class
  Release(EnumerationContext)
Releases an enumeration context

Field Detail

ElementName

public string ElementName
General Information:
A user-friendly name for the object. This property allows each instance to define a user-friendly name in addition to its key properties, identity data, and description information.
Note that the Name property of ManagedSystemElement is also defined as a user-friendly name. But, it is often subclassed to be a Key. It is not reasonable that the same property can convey both identity and a user-friendly name, without inconsistencies. Where Name exists and is not a Key (such as for instances of LogicalDevice), the same information can be present in both the Name and ElementName properties. Note that if there is an associated instance of CIM_EnabledLogicalElementCapabilities, restrictions on this properties may exist as defined in ElementNameMask and MaxElementNameLen properties defined in that class.

Product Specific Usage:
This is a read-only property.
In Intel AMT Release 6.0 and later releases value is "Intel(r) AMT Certificate"

Qualifiers:
-------------
MaxLen=25


InstanceID Key

public string InstanceID
General Information:
Within the scope of the instantiating Namespace, InstanceID opaquely and uniquely identifies an instance of this class.

Product Specific Usage:
In Intel AMT Release 6.0 and later releases value is "Intel(r) AMT Certificate: Handle: %d" where %d is the certificate handle

Qualifiers:
-------------
Key
Override=InstanceID
MaxLen=40


X509Certificate

public uint8[4100] X509Certificate
General Information:
The X.509 Certificate blob.

Product Specific Usage:
Only this field is updated when modifying the AMT_PublicKeyCertificate

Qualifiers:
-------------
OctetString
MaxLen=4100


TrustedRootCertficate

public boolean TrustedRootCertficate
General Information:
For root certificate [that were added by AMT_PublicKeyManagementService.AddTrustedRootCertificate()]this property will be true.

Product Specific Usage:
This is a read-only property.


Issuer

public string Issuer
General Information:
The Issuer field of this certificate.

Product Specific Usage:
Additional Notes:
1) This is a read-only property..
2) In Intel AMT Release 6.0 and later releases, Issuer is restricted to a maximum of 1024 bytes

Qualifiers:
-------------
MaxLen=1024


Subject

public string Subject
General Information:
The Subject field of this certificate.

Product Specific Usage:
Additional Notes:
1) This is a read-only property.
2) In Intel AMT Release 6.0 and later releases, Issuer is restricted to a maximum of 1024 bytes

Qualifiers:
-------------
MaxLen=1024


ReadOnlyCertificate

public boolean ReadOnlyCertificate
General Information:
Indicates whether the certificate is an Intel AMT self-signed certificate. If True, the certificate cannot be deleted or changed.

Qualifiers:
-------------
MaxLen=1024


Method Detail

Put

public  Put([IN]AMT_PublicKeyCertificate Instance)
Permission Information:
Permitted realms: ADMIN_SECURITY_ADMINISTRATION_REALM

General Information:
Changes properties of the selected instance

Product Specific Usage:
The InstanceID property must be included in any representation of AMT_PublicKeyCertificate but cannot be modified.
This method modifies the flash when executed but requires "CommitChanges" to cause a reset sequence.

Get

public  Get([OUT]AMT_PublicKeyCertificate Instance)
Permission Information:
Permitted realms: ADMIN_SECURITY_ADMINISTRATION_REALM, ADMIN_SECURITY_EAC_ADMIN_REALM, ADMIN_SECURITY_GENERAL_INFO_REALM

General Information:
Gets the representation of the instance

Product Specific Usage:
Additional Notes:
1) An instace of this certificate created by IPS_HostBasedSetupService.AddNextCertInChain gets the ADMIN_SECURITY_ADMINISTRATION_REALM and ADMIN_SECURITY_LOCAL_SYSTEM_REALM


Delete

public  Delete()
Permission Information:
Permitted realms: ADMIN_SECURITY_ADMINISTRATION_REALM

General Information:
Deletes an instance

Pull

public  Pull([IN]String EnumerationContext, [IN]String MaxElements)
Permission Information:
All users permitted to use method, only instances to whom the user has permissions will be returned

General Information:
Pulls instances of this class, following an Enumerate operation

Enumerate

public  Enumerate()
Permission Information:
All users permitted to use method

General Information:
Enumerates the instances of this class

Release

public  Release([IN]String EnumerationContext)
Permission Information:
All users permitted to use method

General Information:
Releases an enumeration context

Copyright © 2006-2022, Intel Corporation. All rights reserved.