1 karl  1.1.2.2 // Copyright (c) 2005 DMTF.  All rights reserved.
 2                  [Association, Version ( "2.8.0" ), 
 3                   UMLPackagePath ( "CIM::Policy" ), 
 4                   Description ( 
 5                      "This association specifies that a credential management "
 6                      "service (e.g., CertificateAuthority or Kerberos key "
 7                      "distribution service) is to be trusted to certify credentials, "
 8                      "presented at the packet level. The association defines an "
 9                      "\'approved\' CredentialManagementService that is used for "
10                      "validation. \n"
11                      "\n"
12                      "The use of this class is best explained via an example: \n"
13                      "If a CertificateAuthority is specified using this association, "
14                      "and a corresponding X509CredentialFilterEntry is also "
15                      "associated with a PacketFilterCondition (via the relationship, "
16                      "FilterOfPacketCondition), then the credential MUST match the "
17                      "FilterEntry data AND be certified by that CA (or one of the "
18                      "CredentialManagementServices in its trust hierarchy). "
19                      "Otherwise, the X509CredentialFilterEntry is deemed not to "
20                      "match. If a credential is certified by a "
21                      "CredentialManagementService associated with the "
22 karl  1.1.2.2        "PacketFilterCondition through the AcceptCredentialFrom "
23                      "relationship, but there is no corresponding "
24                      "CredentialFilterEntry, then all credentials from the related "
25                      "service are considered to match." ), 
26                   MappingStrings { "IPSP Policy Model.IETF|AcceptCredentialFrom" }]
27               class CIM_AcceptCredentialFrom : CIM_Dependency {
28               
29                     [Override ( "Antecedent" ), 
30                      Description ( 
31                         "The CredentialManagementService that is issuing the "
32                         "credential to be matched in the PacketFilterCondition." ), 
33                      MappingStrings { 
34                         "IPSP Policy Model.IETF|AcceptCredentialFrom.Antecedent" }]
35                  CIM_CredentialManagementService REF Antecedent;
36               
37                     [Override ( "Dependent" ), 
38                      Description ( 
39                         "The PacketFilterCondition that associates the "
40                         "CredentialManagementService and any "
41                         "FilterLists/FilterEntries." ), 
42                      MappingStrings { 
43 karl  1.1.2.2           "IPSP Policy Model.IETF|AcceptCredentialFrom.Dependent" }]
44                  CIM_PacketFilterCondition REF Dependent;
45               
46               
47               };