Class AMT_PublicKeyCertificate
Used in features: Endpoint Access
Control , Security Administration , Remote Access & User Initiated
Compatible with the following Intel AMT Releases: 3.0, 3.2, 4.0, 5.0,
5.1, 6.0, 6.1, 6.2, 7.0, 8.0, 8.1, 9.0, 9.5, 10.0, 11.0
CIM_ManagedElement
CIM_Credential
AMT_PublicKeyCertificate
class AMT_PublicKeyCertificate
- extends CIM_Credential
General Information:
This class represents a X.509 Certificate in
the Intel(R) AMT CertStore.
Product Specific Usage:
Instances
of this class can be created using the
AMT_PublicKeyManagementService.AddCertificate and
AMT_PublicKeyManagementService.AddTrustedRootCertificate methods.
A
certificate cannot be deleted while it is being used by any service
(TLS/EAC).
Qualifiers:
-------------
Version=6.0.0
Supported Fields
Summary |
string
|
ElementName A
user-friendly name for the object . . .
|
string
|
InstanceID Within the scope of the instantiating Namespace,
InstanceID opaquely and uniquely identifies an instance of this
class.
|
uint8[4100]
|
X509Certificate
The X.509 Certificate blob.
|
boolean
|
TrustedRootCertficate For
root certificate [that were added by
AMT_PublicKeyManagementService.AddTrustedRootCertificate()]this property
will be true.
|
string
|
Issuer The Issuer field
of this certificate.
|
string
|
Subject The Subject
field of this certificate.
|
boolean
|
ReadOnlyCertificate Indicates whether the certificate is an Intel AMT self-signed certificate. If True, the certificate cannot be deleted.
|
Methods Summary |
|
Put(Instance) Changes
properties of the selected instance
|
|
Get(Instance) Gets the
representation of the instance
|
|
Delete() Deletes an
instance
|
|
Pull(EnumerationContext,
MaxElements) Pulls instances of this class, following an
Enumerate operation
|
|
Enumerate()
Enumerates the instances of this class
|
|
Release(EnumerationContext)
Releases an enumeration context
|
ElementName
public string ElementName
- General Information:
A user-friendly name for the object. This
property allows each instance to define a user-friendly name in addition to
its key properties, identity data, and description information.
Note that
the Name property of ManagedSystemElement is also defined as a user-friendly
name. But, it is often subclassed to be a Key. It is not reasonable that the
same property can convey both identity and a user-friendly name, without
inconsistencies. Where Name exists and is not a Key (such as for instances of
LogicalDevice), the same information can be present in both the Name and
ElementName properties. Note that if there is an associated instance of
CIM_EnabledLogicalElementCapabilities, restrictions on this properties may
exist as defined in ElementNameMask and MaxElementNameLen properties defined
in that class.
Product Specific Usage:
This is a read-only
property.
In Intel AMT Release 6.0 and later releases value is "Intel(r)
AMT
Certificate"
Qualifiers:
-------------
MaxLen=25
InstanceID
public string InstanceID
- General Information:
Within the scope of the instantiating
Namespace, InstanceID opaquely and uniquely identifies an instance of this
class.
Product Specific Usage:
In Intel AMT Release 6.0 and
later releases value is "Intel(r) AMT Certificate: Handle: %d" where %d is the
certificate
handle
Qualifiers:
-------------
Key
Override=InstanceID
MaxLen=40
X509Certificate
public uint8[4100] X509Certificate
- General Information:
The X.509 Certificate
blob.
Product Specific Usage:
Only this field is updated when
modifying the
AMT_PublicKeyCertificate
Qualifiers:
-------------
OctetString
MaxLen=4100
TrustedRootCertficate
public boolean TrustedRootCertficate
- General Information:
For root certificate [that were added by
AMT_PublicKeyManagementService.AddTrustedRootCertificate()]this property will
be true.
Product Specific Usage:
This is a read-only
property.
Issuer
public string Issuer
- General Information:
The Issuer field of this
certificate.
Product Specific Usage:
Additional Notes:
1)
This is a read-only property..
2) In Intel AMT Release 6.0 and later
releases, Issuer is restricted to a maximum of 1024
bytes
Qualifiers:
-------------
MaxLen=1024
Subject
public string Subject
- General Information:
The Subject field of this
certificate.
Product Specific Usage:
Additional Notes:
1)
This is a read-only property.
2) In Intel AMT Release 6.0 and later
releases, Issuer is restricted to a maximum of 1024
bytes
Qualifiers:
-------------
MaxLen=1024
ReadOnlyCertificate
public boolean ReadOnlyCertificate
- General Information:
Indicates whether the certificate is an Intel AMT self-signed certificate. If True, the certificate cannot be deleted or changed.
Qualifiers:
-------------
MaxLen=1024
Put
public Put([IN]AMT_PublicKeyCertificate Instance)
- Permission Information:
Permitted realms:
ADMIN_SECURITY_ADMINISTRATION_REALM
General
Information:
Changes properties of the selected
instance
Product Specific Usage:
The InstanceID property must
be included in any representation of AMT_PublicKeyCertificate but cannot be
modified.
This method modifies the flash when executed but requires
"CommitChanges" to cause a reset sequence.
Get
public Get([OUT]AMT_PublicKeyCertificate Instance)
- Permission Information:
Permitted realms:
ADMIN_SECURITY_ADMINISTRATION_REALM, ADMIN_SECURITY_EAC_ADMIN_REALM,
ADMIN_SECURITY_GENERAL_INFO_REALM
General Information:
Gets
the representation of the instance
Product Specific
Usage:
Additional Notes:
1) An instace of this certificate created
by IPS_HostBasedSetupService.AddNextCertInChain gets the
ADMIN_SECURITY_ADMINISTRATION_REALM and ADMIN_SECURITY_LOCAL_SYSTEM_REALM
Delete
public Delete()
- Permission Information:
Permitted realms:
ADMIN_SECURITY_ADMINISTRATION_REALM
General
Information:
Deletes an instance
Pull
public Pull([IN]String EnumerationContext, [IN]String MaxElements)
- Permission Information:
All users permitted to use method, only
instances to whom the user has permissions will be returned
General
Information:
Pulls instances of this class, following an Enumerate
operation
Enumerate
public Enumerate()
- Permission Information:
All users permitted to use
method
General Information:
Enumerates the instances of this
class
Release
public Release([IN]String EnumerationContext)
- Permission Information:
All users permitted to use
method
General Information:
Releases an enumeration
context