GetKeyProtectorCertificate method of the Win32_EncryptableVolume class
The GetKeyProtectorAdSidInformation method of the Win32_EncryptableVolume class retrieves the security identifier and flags used to protect a key.
Syntax
uint32 GetKeyProtectorCertificate( [in] string VolumeKeyProtectorID, [out] string SidString, [out] uint32 Flags );
Parameters
- VolumeKeyProtectorID [in]
-
Type: string
A string identifier that can be used to manage an encrypted volume key protector.
- SidString [out]
-
Type: string
A string that contains the security identifier (SID).
- Flags [out]
-
Type: uint32
Flags that change the function behavior. This can be one of the following values.
Value Meaning - FVE_DPAPI_NG_FLAG_NONE
- 0x0000
No effect.
- FVE_DPAPI_NG_FLAG_UNLOCK_AS_SERVICE_ACCOUNT
- 0x0001
Specifies that the SID-based protector was protected to a service account. If this flag is specified, the caller should ensure that it is running as the appropriate service account before calling UnlockWithAdSid (by temporarily dropping impersonation, for example).
Return value
Type: uint32
This method returns one of the following codes or another error code if it fails.
| Return code/value | Description |
|---|---|
|
The method was successful. |
Remarks
Managed Object Format (MOF) files contain the definitions for Windows Management Instrumentation (WMI) classes. MOF files are not installed as part of the Windows SDK. They are installed on the server when you add the associated role by using the Server Manager. For more information about MOF files, see Managed Object Format (MOF).
Requirements
|
Minimum supported client | Windows 8 Enterprise, Windows 8 Ultimate [desktop apps only] |
|---|---|
|
Minimum supported server | Windows Server 2012 [desktop apps only] |
|
Namespace |
\\.\root\CIMV2\Security\MicrosoftVolumeEncryption |
|
MOF |
|
See also
Send comments about this topic to Microsoft
Build date: 10/26/2012
