Class Hierarchy
Class Attributes
Class Qualifiers
Properties
Methods
Associations in which the class can participate
Sub Profiling Summary
CIM_X509Certificate --> CIM_X509Infrastructure --> CIM_SignedCredential --> CIM_Credential --> CIM_ManagedElement --> [top]
Class Declaration Attributes Name Value SUPERCLASS CIM_X509Infrastructure NAME CIM_X509Certificate
Class CIM_X509Certificate Qualifiers Name Type Value From Class Experimental boolean true CIM_X509Certificate Version string 2.17.0 CIM_X509Certificate UMLPackagePath string CIM::User::PublicKey CIM_X509Certificate Description string CIM_X509Certificate describes Internet X509 Public Key Infrastructure (PKI) standard based certificates. The certificates are signed by a trusted Certificate Authority (CA) or by the owner of the certificate and issued to an authenticated entity (e.g., human user, service, etc.) called the Subject in the certificate. The public key in the certificate is cryptographically related to a private key that is held and kept private by the authenticated Subject. The certificate and its related private key can then be used for establishing trust relationships and securing communications with the Subject. Refer to the Internet X.509 PKI standard (RFC 3280) for more information. CIM_X509Certificate UMLPackagePath string CIM::User::PublicKey CIM_X509Infrastructure Description string CIM_X509Infrastructure describes Internet X509 Public Key Infrastructure (PKI) standard based properties used by certificates and certificate revocation lists. For more information on the Internet X509 PKI refer to the RFC 3280. CIM_X509Infrastructure UMLPackagePath string CIM::User::PublicKey CIM_SignedCredential Description string A SignedCredential is a credential that is cryptographically signed by a trusted Certificate Authority (CA) or the owner of the credential itself. CIM_SignedCredential UMLPackagePath string CIM::User::Credential CIM_Credential Description string Subclasses of CIM_Credential define materials, information or other data which are used to establish identity. Generally, there may be some shared information, or credential material which is used to identify and authenticate an entity in the process of gaining access to, or permission to use, resources. Such credential material may be used to authenticate an entity's identity initially, as done by a CIM_AuthenticationService, and additionally on an ongoing basis (for example, during the course of a connection or other security association), as proof that each received message or communication came from a valid 'user' of that credential material. CIM_Credential UMLPackagePath string CIM::Core::CoreElements CIM_ManagedElement Description string ManagedElement is an abstract class that provides a common superclass (or top of the inheritance tree) for the non-association classes in the CIM Schema. CIM_ManagedElement
Property Qualifiers
Property IssuerUID Qualifiers Name Type Value From Class Description string String that identifies the issuer of the certificate. CIM_X509Certificate OctetString boolean true CIM_X509Certificate
Property Subject Qualifiers Name Type Value From Class Description string Certificate subject identifier. CIM_X509Certificate MaxLen uint32 256 CIM_X509Certificate
Property AltSubject Qualifiers Name Type Value From Class Description string Alternate subject identifier for the Certificate. CIM_X509Certificate MaxLen uint32 256 CIM_X509Certificate
Property PublicKey Qualifiers Name Type Value From Class Description string The DER-encoded raw public key that belongs to the subject the certificate vouches for. CIM_X509Certificate OctetString boolean true CIM_X509Certificate
Property PublicKeySize Qualifiers Name Type Value From Class Description string The length of the public key represented in the PublicKey property. CIM_X509Certificate
Property IsValid Qualifiers Name Type Value From Class Description string IsValid represents whether the certificate is currently valid. When the certificate is revoked or expired the IsValid shall be set to 3(InValid). CIM_X509Certificate ValueMap string [See below.] CIM_X509Certificate Values string Unknown
Valid
Invalid
DMTF Reserved
Vendor SpecifiedCIM_X509Certificate
Name Value 0 Unknown 2 Valid 3 Invalid 4..32767 DMTF Reserved 32768..65535 Vendor Specified
Property SerialNumber Qualifiers Name Type Value From Class Description string Unique number that identifies this certificate. CIM_X509Certificate OctetString boolean true CIM_X509Certificate
Property PublicKeyAlgorithm Qualifiers Name Type Value From Class Description string Public key algorithm. CIM_X509Certificate ValueMap string [See below.] CIM_X509Certificate Values string Unknown
RSA
DSA
DMTF Reserved
Vendor SpecifiedCIM_X509Certificate
Name Value 0 Unknown 2 RSA 3 DSA 4..32767 DMTF Reserved 32768..65535 Vendor Specified
Property KeyUsage Qualifiers Name Type Value From Class Description string Key usage defines the purpose of the key. Key usage could include digital signing, key agreement, certificate signing, and more. The key usage is an extension to the X.509 specification. CIM_X509Certificate ValueMap string [See below.] CIM_X509Certificate Values string Unknown
Digital Signature
Non Repudiation
Key Encipherment
Data Encipherment
Key Agreement
Key Certificate Signature
DMTF Reserved
Vendor SpecifiedCIM_X509Certificate
Name Value 0 Unknown 2 Digital Signature 3 Non Repudiation 4 Key Encipherment 5 Data Encipherment 6 Key Agreement 7 Key Certificate Signature 8..32767 DMTF Reserved 32768..65535 Vendor Specified
Property ExtendedKeyUsage Qualifiers Name Type Value From Class Description string This extension indicates one or more purposes for which the certified public key may be used, in addition to or in place of the basic purposes indicated in the key usage extension. CIM_X509Certificate
Property PathLengthConstraint Qualifiers Name Type Value From Class Description string An X.509 certificate may contain an optional extension that identifies whether the subject of the certificate is a certificate authority (CA). If the subject is a CA, this property defines the number of certificates that may follow this certificate in a certification chain. CIM_X509Certificate
Property SubjectUID Qualifiers Name Type Value From Class Description string Identifies the subject of the certificate. CIM_X509Certificate OctetString boolean true CIM_X509Certificate
Property EncodedCertificate Qualifiers Name Type Value From Class Description string The full content of the certificate in binary form. CIM_X509Certificate OctetString boolean true CIM_X509Certificate
Property Version Qualifiers Name Type Value From Class Description string Version of X.509. CIM_X509Infrastructure
Property TBSCertificate Qualifiers Name Type Value From Class Description string The To Be Signed (TBS) certificate is used as an input data to the signature algorithm when the certificate is signed or verified. CIM_X509Infrastructure OctetString boolean true CIM_X509Infrastructure
Property MD5Fingerprint Qualifiers Name Type Value From Class Description string Digital signature algorithm that verifies data integrity by creating a 128-bit message digest or fingerprint. The fingerprint is unique to the input data and contains the binary hash of the encoded X509 object such as encoded certificate or CRL. CIM_X509Infrastructure OctetString boolean true CIM_X509Infrastructure
Property SHA1Fingerprint Qualifiers Name Type Value From Class Description string Secure hashing algorithm, a cryptographic message digest algorithm used to verify data integrity by making replication of the fingerprint. The fingerprint is unique to the input data and contains the binary hash of the encoded X509 object such as encoded certificate or CRL. CIM_X509Infrastructure OctetString boolean true CIM_X509Infrastructure
Property InstanceID Qualifiers Name Type Value From Class Key boolean true CIM_SignedCredential Description string Within the scope of the instantiating Namespace, InstanceID opaquely and uniquely identifies an instance of this class. In order to ensure uniqueness within the NameSpace, the value of InstanceID SHOULD be constructed using the following 'preferred' algorithm: <OrgID>:<LocalID>Where <OrgID> and <LocalID> are separated by a colon ':', and where <OrgID> MUST include a copyrighted, trademarked or otherwise unique name that is owned by the business entity creating/defining the InstanceID, or is a registered ID that is assigned to the business entity by a recognized global authority. (This is similar to the <Schema Name>_<Class Name> structure of Schema class names.) In addition, to ensure uniqueness, <OrgID> MUST NOT contain a colon (':'). When using this algorithm, the first colon to appear in InstanceID MUST appear between <OrgID> and <LocalID>. <LocalID> is chosen by the organizational entity and SHOULD not be re-used to identify different underlying (real-world) elements. If the above 'preferred' algorithm is not used, the defining entity MUST assure that the resultant InstanceID is not re-used across any InstanceIDs produced by this or other providers for this instance's NameSpace. For DMTF defined instances, the 'preferred' algorithm MUST be used with the <OrgID> set to 'CIM'. CIM_SignedCredential
Property IssuerName Qualifiers Name Type Value From Class Description string Issuer name who signed the credential. CIM_SignedCredential
Property Signature Qualifiers Name Type Value From Class Description string Certificate authority's or credential owner's identifying digest that confers validity on a signed credential. CIM_SignedCredential OctetString boolean true CIM_SignedCredential
Property SignatureAlgorithm Qualifiers Name Type Value From Class Description string Algorithm used to generate the signature. The algorithms specified are described in RFC3279. If the value of this property is 1, "Other", then the OtherSignatureAlgorithm shall be non NULL, non blank string CIM_SignedCredential ValueMap string [See below.] CIM_SignedCredential Values string Other
SHA1withDSA
SHA1withECDSA
SHA224withECDSA
SHA256withECDSA
SHA384withECDSA
SHA512withECDSA
GOST3411withGOST3410
GOST3411withECGOST3410
MD2withRSA
MD5withRSA
SHA1withRSA
SHA224withRSA
SHA256withRSA
SHA384withRSA
SHA512withRSA
RIPEMD160withRSA
RIPEMD128withRSA
RIPEMD256withRSA
DMTF Reserved
Vendor ReservedCIM_SignedCredential
Name Value 0 Other 1 SHA1withDSA 2 SHA1withECDSA 3 SHA224withECDSA 4 SHA256withECDSA 5 SHA384withECDSA 6 SHA512withECDSA 7 GOST3411withGOST3410 8 GOST3411withECGOST3410 9 MD2withRSA 10 MD5withRSA 11 SHA1withRSA 12 SHA224withRSA 13 SHA256withRSA 14 SHA384withRSA 15 SHA512withRSA 16 RIPEMD160withRSA 17 RIPEMD128withRSA 18 RIPEMD256withRSA 19..32567 DMTF Reserved 32568..65535 Vendor Reserved
Property OtherSignatureAlgorithm Qualifiers Name Type Value From Class Description string A string describing the signature algorithm when the SignatureAlgorithm property has the value 1, "Other". CIM_SignedCredential
Property SignatureAlgorithmOID Qualifiers Name Type Value From Class Description string Object ID of the signature algorithm. CIM_SignedCredential
Property Issued Qualifiers Name Type Value From Class Description string The date and time when the credential was issued. Use a value of all '00000101000000.000000+000', (midnight, January 1, 1 BCE at coordinated universal time +0 minutes), if this information is not applicable. On CreateInstance, if this property is unspecified, or set to NULL, then current time is assumed. CIM_Credential
Property Expires Qualifiers Name Type Value From Class Description string The date and time when the credential expires (and is not appropriate for use for authentication/ authorization). If this information is not applicable, Use a value of '99991231235959.999999+999', (1 microsecond before midnight, December 31, 9999 CE, at coordinated universal time + 999 minutes). On CreateInstance, if this property is unspecified, or set to NULL, then a value of '99991231235959.999999+999' is assumed. Note that this property does not define how the expiration is set - but that there IS an expiration. The property may be set to either a specific date/time or an interval (calculated from the Issued datetime). For example, for Certificate Authority-signed public key, the expiration is determined by the CA. Another example is a voice mail password that expires 60 days after it is set/issued. CIM_Credential
Property ValidFrom Qualifiers Name Type Value From Class Description string Start date of the credential validity time period. If this information is not applicable, use a value of "99991231235959.999999+999", 1 microsecond before midnight, December 31, 9999 CE, at coordinated universal time + 999 minutes. On CreateInstance, if this property is unspecified, or set to NULL, then a value of "99991231235959.999999+999" is assumed. CIM_Credential
Property Caption Qualifiers Name Type Value From Class Description string The Caption property is a short textual description (one- line string) of the object. CIM_ManagedElement MaxLen uint32 64 CIM_ManagedElement
Property Description Qualifiers Name Type Value From Class Description string The Description property provides a textual description of the object. CIM_ManagedElement
Property ElementName Qualifiers Name Type Value From Class Description string A user-friendly name for the object. This property allows each instance to define a user-friendly name in addition to its key properties, identity data, and description information. Note that the Name property of ManagedSystemElement is also defined as a user-friendly name. But, it is often subclassed to be a Key. It is not reasonable that the same property can convey both identity and a user-friendly name, without inconsistencies. Where Name exists and is not a Key (such as for instances of LogicalDevice), the same information can be present in both the Name and ElementName properties. CIM_ManagedElement
Method Qualifiers
Parameters
Parameter Qualifiers