Export (0) Print
Expand All

7 Appendix B: Product Behavior

The information in this specification is applicable to the following Microsoft products or supplemental software. References to product versions include released service packs:

  • Windows Vista operating system

  • Windows Server 2008 operating system

Exceptions, if any, are noted below. If a service pack or Quick Fix Engineering (QFE) number appears with the product version, behavior changed in that service pack or QFE. The new behavior also applies to subsequent service packs of the product unless otherwise specified. If a product edition appears with the product version, behavior is different in that product edition.

Unless otherwise specified, any statement of optional behavior in this specification that is prescribed using the terms SHOULD or SHOULD NOT implies product behavior in accordance with the SHOULD or SHOULD NOT prescription. Unless otherwise specified, the term MAY implies that the product does not follow the prescription.

<1> Section 1.7: Windows RPC protocol returns RPC_S_PROCNUM_OUT_OF_RANGE to notify the client that an RPC method is out of range, as specified in [MS-RPCE].

<2> Section 3.1.4.1: Windows verifies that the identity, reported from Kerberos to RPC, is a computer account, not a user account.

<3> Section 3.1.4.1: Windows limits the table to 100 entries. If the table already contains a certificate for the client SID, that certificate is deleted and the new one is inserted into the table. Otherwise, the server sorts the certificates according to the time they were inserted into the table and chooses the oldest. If more than one minute has elapsed since its insertion, the server deletes that row of the table and inserts the new certificate. Otherwise, the server returns 0x80040006.

<4> Section 3.1.4.1: Windows replaces the prior certificate.

<5> Section 3.1.4.1: When sending a CERTIFICATE_BLOB, the Windows client and server remove the KEY_PROV_INFO_property from the certificate. When receiving a CERTIFICATE_BLOB, the Windows client and server store the property with the other certificate attributes.

<6> Section 3.2.4.1: Windows limits the table to 100 entries. If the table already contains a certificate for the server SID, that certificate is deleted and the new one is inserted into the table. Otherwise, the client sorts the certificates according to the times when they were inserted into the table and chooses the oldest. If more than one minute has elapsed since certificate insertion, the client deletes that row of the table and inserts the new certificate. Otherwise, the server certificate is discarded and an error is reported to the higher-layer protocol.

<7> Section 3.2.4.1: Windows replaces the prior certificate.

 
Show:
© 2014 Microsoft