2.2.60 FW_AUTH_METHOD

This enumeration defines the different authentication methods that are used for authentication. The IpSecPhase field of the FW_AUTH_SET containing the FW_AUTH_SUITE determines which authentication methods are valid for a particular authentication suite.

 typedef  enum _tag_FW_AUTH_METHOD
 {
   FW_AUTH_METHOD_INVALID = 0,
   FW_AUTH_METHOD_ANONYMOUS = 1,
   FW_AUTH_METHOD_MACHINE_KERB = 2,
   FW_AUTH_METHOD_MACHINE_SHKEY = 3,
   FW_AUTH_METHOD_MACHINE_NTLM = 4,
   FW_AUTH_METHOD_MACHINE_CERT = 5,
   FW_AUTH_METHOD_USER_KERB = 6,
   FW_AUTH_METHOD_USER_CERT = 7,
   FW_AUTH_METHOD_USER_NTLM = 8,
   FW_AUTH_METHOD_MACHINE_RESERVED = 9,
   FW_AUTH_METHOD_USER_RESERVED = 10,
   FW_AUTH_METHOD_MAX_2_10 = 9,
   FW_AUTH_METHOD_MAX = 11
 } FW_AUTH_METHOD;

FW_AUTH_METHOD_INVALID:  This value MUST NOT be used. It is defined for simplicity in writing IDL definitions and code. This symbolic constant has a value of 0.

FW_AUTH_METHOD_ANONYMOUS:  This method does not require identity to authenticate. It is equal to no authentication. This method can be used for both FW_IPSEC_PHASE_1 or FW_IPSEC_PHASE_2. This symbolic constant has a value of 1.

FW_AUTH_METHOD_MACHINE_KERB:  This method authenticates the identity of machines by using Kerberos Protocol Extensions as specified in [MS-KILE]. This method MUST be used only on FW_IPSEC_PHASE_1. This symbolic constant has a value of 2.

FW_AUTH_METHOD_MACHINE_SHKEY:  This method uses a previous manually shared key to authenticate machine identities. This method MUST be used only on FW_IPSEC_PHASE_1. This symbolic constant has a value of 3.

FW_AUTH_METHOD_MACHINE_NTLM:  This method authenticates the identity of machines by using the NTLM Authentication Protocol as specified in [MS-NLMP]. This method MUST be used only on FW_IPSEC_PHASE_1. This symbolic constant has a value of 4.

FW_AUTH_METHOD_MACHINE_CERT:  This method authenticates the identity of a machine by using machine certificates. This method can be used for both FW_IPSEC_PHASE_1 or FW_IPSEC_PHASE_2. This symbolic constant has a value of 5.

FW_AUTH_METHOD_USER_KERB:  This method authenticates user identities by using the Kerberos Protocol Extensions. This method MUST be used only on FW_IPSEC_PHASE_2. This symbolic constant has a value of 6.

FW_AUTH_METHOD_USER_CERT:  This method authenticates user identities by using user certificates. This method MUST be used only on FW_IPSEC_PHASE_2. This symbolic constant has a value of 7.

FW_AUTH_METHOD_USER_NTLM:  This method authenticates user identities by using the NTLM Authentication Protocol. This method MUST be used only on FW_IPSEC_PHASE_2. This symbolic constant has a value of 8.

FW_AUTH_METHOD_MACHINE_RESERVED:  This value is invalid and MUST NOT be used. This symbolic constant has a value of 9.

FW_AUTH_METHOD_USER_RESERVED:  This value is invalid and MUST NOT be used. This symbolic constant has a value of 10.

FW_AUTH_METHOD_MAX_2_10:  This value and values that exceed this value are not valid and MUST NOT be used by servers and clients with schema version 0x020A and earlier. It is defined for simplicity in writing IDL definitions and code. This symbolic constant has a value of 9.

FW_AUTH_METHOD_MAX:  This value and values that exceed this value are not valid and MUST NOT be used. It is defined for simplicity in writing IDL definitions and code. This symbolic constant has a value of 11.