2.2.4.36 ServiceType
ServiceType is the overall container for the Web Services Management Protocol Extensions for Windows Vista service. Note that listeners are not part of this container and need to be retrieved separately. The schema MUST be as shown here.
-
<xs:schema xmlns:cfg="http://schemas.microsoft.com/wbem/wsman/1/config" xmlns:xs="http://www.w3.org/2001/XMLSchema" targetNamespace="http://schemas.microsoft.com/wbem/wsman/1/config" elementFormDefault="qualified"> <xs:element name="Service" type="cfg:ServiceType"/> <xs:complexType name="ServiceType"> <xs:sequence> <xs:element name="RootSDDL" type="xs:string" default="O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD) (AU;SA;GWGX;;;WD)"/> <xs:element name="MaxConcurrentOperations" type="xs:unsignedInt" default="100"/> <xs:element name="MaxConcurrentOperationsPerUser" type="xs:unsignedInt" minOccurs="0" default="1500"/> <xs:element name="EnumerationTimeoutms" type="xs:unsignedInt" default="60000"/> <xs:element name="MaxConnections" type="xs:unsignedInt" default="300"/> <xs:element name="MaxPacketRetrievalTimeSeconds" type="xs:unsignedInt" minOccurs="0" default="120" /> <xs:element name="AllowUnencrypted" type="xs:boolean" default="false"/> <xs:element name="Auth" type="cfg:ServiceAuthType"/> <xs:element name="DefaultPorts" type="cfg:ServiceDefaultPortsType"/> <xs:element name="IPv4Filter" type="xs:string" default="*"/> <xs:element name="IPv6Filter" type="xs:string" default="*"/> <xs:element name="CertificateThumbprint" type="xs:string" minOccurs="0"/> </xs:sequence> </xs:complexType> </xs:schema>
Elements
RootSDDL: The security descriptor controls remote access to the listener. The string format of RootSDDL uses the syntax defined by the Security Descriptor Definition Language (SDDL), as specified in [MS-DTYP] section 2.5.1. The default value MUST be "O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GWGX;;;WD)". This configuration setting is used when processing messages, as specified in section 3.1.4.1.28.
MaxConcurrentOperations: The maximum number of concurrent Enumeration operations allowed. The maximum allowed value MUST be 4294967295; a server MAY allow smaller values but MUST NOT allow a value less than 1.<17> The default value SHOULD be 100. This configuration setting MAY<18> be used when processing messages, as specified in section 3.1.4.1.19.
MaxConcurrentOperationsPerUser: The maximum number of concurrent Enumeration operations allowed by an individual user. The minimum value MUST be 1. The maximum value MUST be 4294967295. The default value SHOULD be 1500 but MAY be 15.<19> This configuration setting is used when processing messages, as specified in section 3.1.4.1.19.
EnumerationTimeoutms: The idle time-out, in milliseconds, between Pull messages. The time interval is measured beginning from the time that the service sends the EnumerationResponse or PullResponse to the client, to the time that the service receives a Pull or Release request. The minimum value MUST be 500. The maximum value MUST be 4294967295. The default value MUST be 60000. This configuration setting is used by the Enumeration Garbage Collection timer, as specified in section 3.1.5.
MaxConnections: The maximum number of active requests that the service can process simultaneously. The minimum value MUST be 1. The default value SHOULD be 300.<20> The maximum value is implementation-specific but SHOULD NOT<21> exceed 512. This configuration setting is used when processing messages, as specified in section 3.1.4.1.19.<22>
MaxPacketRetrievalTimeSeconds: The maximum length of time, in seconds, a service is allowed to take to receive the entire HTTP request from the client. The time interval is measured beginning from the time the service receives the HTTP header from the client, to the time the service has retrieved the entire HTTP message. The minimum value of this element MUST be 1, and the maximum value MUST be 4294967295. The default value MUST be 120. This configuration setting is used by the Packet Retrieval timer, as specified in section 3.1.5.
AllowUnencrypted: Contains a setting that allows the Web Services Management Protocol Extensions for Windows Vista client to send requests by using an authentication scheme and transport that does not encrypt the request and response, such as Digest over HTTP. The default value MUST be false. Used when processing messages, as specified in section 3.1.4.1.29.
Auth: This MUST contain additional elements to configure authentication schemes, as specified in section 2.2.4.34.
DefaultPorts: This MUST contain additional elements to configure the default ports that are used when creating a listener, as specified in section 2.2.4.35.
IPv4Filter: The IPv4 addresses that can be used by listeners. Three values are possible:
Blank: No IPv4 addresses can be used.
The asterisk "*" character: any IPv4 address can be used. This MUST be the default value.
A list of IP ranges in which the ranges are separated by a comma "," character and each range is a pair of IPv4 addresses in dotted-decimal format separated by a hyphen "-" character and the smaller value occurs first in the pair. Indicates that any IP address in the given ranges can be used. Ranges are inclusive.
IPv6Filter: The IPv6 addresses that can be used by listeners. Three values are possible:
Blank: No IPv6 addresses can be used.
The asterisk "*" character: any IPv6 address can be used. This MUST be the default value.
A list of IP ranges in which the ranges are separated by a comma "," character and each range is a pair of IPv6 addresses in coloned-hexadecimal format separated by a hyphen "-" character and the smaller value occurs first in the pair. Indicates that any IP address in the given ranges can be used. Ranges are inclusive.
CertificateThumbprint: The thumbprint of the service certificate.