Expand Minimize

DRMSetRevocationPoint function

[The AD RMS SDK leveraging functionality exposed by the client in Msdrm.dll is available for use in Windows Server 2008, Windows Vista, Windows Server 2008 R2, Windows 7, Windows Server 2012, and Windows 8. It may be altered or unavailable in subsequent versions. Instead, use Active Directory Rights Management Services SDK 2.0, which leverages functionality exposed by the client in Msipc.dll.]

The DRMSetRevocationPoint function sets a refresh rate and location to obtain a revocation list.

Syntax


HRESULT DRMSetRevocationPoint(
  _In_  DRMPUBHANDLE hIssuanceLicense,
  _In_  BOOL fDelete,
  _In_  PWSTR wszId,
  _In_  PWSTR wszIdType,
  _In_  PWSTR wszURL,
  _In_  SYSTEMTIME *pstFrequency,
  _In_  PWSTR wszName,
  _In_  PWSTR wszPublicKey
);

Parameters

hIssuanceLicense [in]

A handle to an issuance license.

fDelete [in]

Flag indicating whether the existing item should be deleted: TRUE indicates it should be deleted; FALSE indicates it should be added.

wszId [in]

ID of the revocation authority posting the revocation list. This must match the ID given in the ISSUER node of the revocation list.

wszIdType [in]

Type of ID used by wszId.

wszURL [in]

URL of revocation file list.

pstFrequency [in]

How often the list must be updated.

wszName [in]

Optional human-readable name for a revocation list site.

wszPublicKey [in]

Public key of key pair used to sign and verify the revocation list.

Return value

If the function succeeds, the function returns S_OK.

If the function fails, it returns an HRESULT value that indicates the error. Possible values include, but are not limited to, those in the following table. For a list of common error codes, see Common HRESULT Values.

Return codeDescription
E_DRM_NOT_SET

Item requested to delete does not exist.

 

Remarks

A revocation list can revoke end-user licenses, server licensor certificates, or almost anything else with an identifying GUID. For a list of the items that can be revoked, see Revocation. The URL provided should refer to the list file itself. The rights management system handles checking for a valid revocation list. This function should only be called once, since subsequent calls will overwrite the previous revocation point in the issuance license.

The public key must be a base-64 encoded string.

Note that if there is no revocation point set in the license, the license can still be revoked by a revocation list signed by the issuer of the license.

Requirements

Product

Rights Management Services client 1.0 SP2 or later

Header

Msdrm.h

Library

Msdrm.lib

DLL

Msdrm.dll

See also

AD RMS Functions
DRMGetRevocationPoint
Revoking a Certificate

 

 

Show:
© 2014 Microsoft