IOCSPAdmin::GetMyRoles method

The GetMyRoles method gets the access mask of privilege roles for a user on a given Online Certificate Status Protocol (OCSP) responder server.

Syntax


HRESULT GetMyRoles(
  [in]   const BSTR bstrServerName,
  [out]  LONG *pRoles
);

Parameters

bstrServerName [in]

A string that contains the responder-server name.

pRoles [out]

A pointer to the 32-bit access mask.

Return value

C++

If the method succeeds, it returns S_OK.

If the method fails, it returns an HRESULT value that indicates the error. For a list of common error codes, see Common HRESULT Values.

VB

The 32-bit access mask.

Remarks

The OCSP responder server defines the following masks for access privilege roles.

ConstantC++ valueVB Script valueDescription

CA_ACCESS_ADMIN

0x001

&H1

CA administrator

CA_ACCESS_READ

0x100

&H100

Read-only access to a CA

CA_ACCESS_ENROLL

0x200

&H200

Enroll access to a CA

 

Examples of privileges a user might have, depending on the mask:

  • Configure and upgrade an OCSP server.
  • Assign existing signing certificate and key.
  • Install and update Certificate Revocation Lists (CRLs).
  • Configure a response format.

Requirements

Minimum supported client

None supported

Minimum supported server

Windows Server 2008 Datacenter, Windows Server 2008 Enterprise [desktop apps only]

Header

Certadm.h (include Certsrv.h)

IDL

Certadm.idl

Library

Certadm.lib

DLL

Certadm.dll

IID

IID_IOCSPAdmin is defined as 322E830D-67DB-4FE9-9577-4596D9F09294

See also

IOCSPAdmin

 

 

Community Additions

ADD
Show:
© 2014 Microsoft. All rights reserved.