CM_VPNEntries Configuration Service Provider

  • Article

The CM_VPNEntries Configuration Service Provider configures the Virtual Private Network (VPN) entries on the device. Users can use VPN to connect to a corporate network using an Internet.

Note Access to this Configuration Service Provider is determined by Security roles. Because OEMs and Mobile Operators can selectively disallow access, ask them about the availability of this Configuration Service Provider. For more information, see Security Roles.

The nocharacteristic tag will work on the top two levels to delete all, or specific, entries.

The following table shows the default settings.

Permissions Read/write
Roles allowed to query and update setting Manager

AuthenticatedUser

Characteristics

  • <entryname>
    The <entryname> characteristic is used as the name of the connection. Fields under this characteristic specify parameters for this connection.

    Note  The system does not allow duplicate entry names among CM_VPNEntries, CM_PPPEntries, and CM_GPRSEntries.

Parms

  • AltDnsAddr
    This parm is used in the <entryname> characteristic and is placed in the ipaddrDnsAlt member of the RASENTRY structure.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label Alternate DNS address
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • AltWinsAddr
    Used in the <entryname> characteristic and is placed in the ipaddrWinsAlt member of the RASENTRY structure. .

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label Alternate WINS address
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • AreaCode
    Used in the <entryname> characteristic. This value specifies the area-code portion of the phone number. This value is placed in the szAreaCode member of the RASENTRY structure.

  • CountryCode
    Used in the <entryname> characteristic. This value specifies the country-code portion of the phone number. This value is placed in the dwCountryCode member of the RASENTRY structure.

  • Desc.<langid>
    Used in the <entryname> characteristic. A tag in the format of Desc.<langid> is used as the language-specific identifier for that entry. For example, if the field <parm name="Desc.0409" value="GPRS Connection" /> is set, "GPRS Connection" appears in the UI to identify this connection when the device is set to the English language (language ID 0409).

    Descriptions for multiple languages may be provisioned using this mechanism, and the operating system automatically switches among them if the user changes language preferences on the device. If no <Desc> tag is provisioned for a specific language, the system defaults to the characteristic tag name used to create the entry.

  • DestId
    Used in the <entryname> characteristic as a GUID that represents the unique ID of the network to which this entry connects. See the Connmgr.h header for predefined GUID values IID_DestNet*.

    The following table shows the default settings.

    Permissions Read/write
    Data type String
    Label Connects to
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • DeviceName
    Used in the <entryname> characteristic. This value specifies the local portion of the phone number. This value is placed in the szDeviceName member of the RASENTRY structure. DeviceName contains the name of a TAPI device to use with this phone-book entry, for example, "XYZ Corp 28800 External".

    To enumerate the number of available RAS-capable devices, use the lineInitialize function. For Smartphone 2002 devices, by default, this field contains the name of the cellular TAPI device (specified in Tsp.h) of "Cellular Line".

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label Device name
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • DeviceType
    Used in the <entryname> characteristic. This value is placed in the ipaddrDns member of the RASENTRY structure The default value for this parameter is RASDT_Modem.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label Device type
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • DeviceSpecificRAW
    Used in the <entryname> characteristic to allow querying or setting the TAPI device-specific data structure associated with the RAS entry. This duplicates the functionality of the various XML tags under the <entryname>/DevSpecificCellular and <entryname>/DevSpecificUnimodem characteristics, and also allows the setting of the device specific information for other non-standard TAPI service providers.

    The string value is interpreted as a hexadecimal byte stream, for example the string "FFFFFFFF" sets the structure to a single DWORD with all bits set. The string should describe the entire data structure and cannot just set the initial section of it. The resulting structure is passed into the TAPI service provider through lineSetDevConfig each time the connection is brought up.

    Note  Use this parm with caution because it allows direct manipulation of the underlying data structures used by the TAPI service provider.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • DialAsLocalCall
    Used in the <entryname> characteristic to specify the setting of the RASEO_DialAsLocalCall member in the RASENTRY structure. Possible values are 0 or 1.

    Note  For cellular devices, this member is typically ignored, and the system is programmed to dial the full canonical number, for example, "+<country code><area code><local number>."

    The following table shows the default settings.

    Permissions Read/Write
    Data type Boolean
    Label Dial as local call
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • DnsAddr
    This parm is used in the <entryname> characteristic and is placed in the ipaddrDns member of the RASENTRY structure. For more information about RASENTRY, see MSDN.

    The following table shows the default settings.

    Permissions Read/write
    Data type String
    Label DNS address
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • Domain
    Used in the <entryname> characteristic. This value is placed in the ipaddrDns member of the RASENTRY structure.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label Domain:
    Semantic type url
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • Enabled
    This parameter can be used in the <entryname> characteristic to enable or disable a connection entry without removing it from the system. Permitted values are 0 for OFF or 1 for ON.

    The following table shows the default settings.

    Permissions Read/write
    Data type Boolean
    Label Enabled
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • FrameSize
    Used in the <entryname> characteristic. This value is placed in the dwFrameSize member of the RASENTRY structure.

    The following table shows the default settings.

    Permissions Read/Write
    Data type Integer
    Label Frame size
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • Framing
    Used in the <entryname> characteristic. This value is placed in the dwFramingProtocol member of the RASENTRY structure.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label Framing
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • IpAddr
    Used in the <entryname> characteristic. This value specifies the IP address to be used while this connection is active. This value is placed in the ipaddr member of the RASENTRY structure. The ipAddr member is ignored unless dwfOptions specifies the RASEO_SpecificIpAddr member.

    The following table shows the default settings for this parm.

    Permissions Read/Write
    Data type String
    Label IP address:
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • IpHeaderCompression
    Used in the <entryname> characteristic to specify the setting of the RASEO_IpHeaderCompression member of the RASENTRY structure. Possible values are 0 or 1. Permitted values are 0 for OFF or 1 for ON.

    The following table shows the default settings.

    Permissions Read/Write
    Data type Boolean
    Label Use header compression
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • IpSecAuth
    Used in the <entryname> characteristic to specify the authentication mechanism used if L2TP/IPSec is selected as the VPN type. Possible values are:

    • 0 for certificate
    • 1 for pre-shared key

    The following table shows the default settings.

    Permissions Read/write
    Data type String
    Label Authenticate IPSec/L2TP connections using
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • Password
    Used in the <entryname> characteristic. This value specifies the password to be used during authentication. This value is placed in the szPassword member of the RASDIALPARAMS structure.

    If this parameter is left empty, the operating system optionally automatically prompts for the user name and password when making a connection. Queries of this field return a string that is composed of asterisks (*).

    When setting the password, passing in the same string causes the new password to be ignored and does not change the existing password.

    If the password is left empty, the system optionally automatically prompts for the user name and password when making a connection.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label Password:
    Semantic type alphanumeric-password
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • Phone
    Used in the <entryname> characteristic. This value specifies the local portion of the phone number. This value is placed in the szLocalPhoneNumber member of the RASENT RY structure.

    The following table shows the default settings.

    Permissions Read/write
    Data type String
    Label Server:
    Semantic type url
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • PresharedKey
    Used in the <entryname> characteristic to store the value of the pre-shared key if this authentication method is selected for IPSec/L2TPP. The preshared key string has a maximum length of 256 characters containing any characters. This string is entered as plain text but appears as asterisks once the user leaves the edit box page.

    The following table shows the default settings.

    Permissions Read/write
    Data type String
    Label A Pre-shared key
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • RemoteDefaultGateway
    Used in the <entryname> characteristic to specify the setting of the RASEO_RemoteDefaultGateway member in the RASENTRY structure. Permitted values are 0 for OFF or 1 for ON. See MSDN for the use of this flag.

    The following table shows the default settings.

    Permissions Read/Write
    Data type Boolean
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • RequireDataEncryption
    Used in the <entryname> characteristic to specify the setting of the RASEO_RequireDataEncryption member of the RASENTRY structure. Permitted values are 0 for OFF or 1 for ON. See MSDN for more information about the use of this flag.

    The following table shows the default settings.

    Permissions Read/Write
    Data type Boolean
    Label Require data encryption
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • RequireEncryptedPw
    Used in the <entryname> characteristic to specify the setting of the RASEO_RequireDataEncryption member of the RASENTRY structure. Permitted values are 0 for OFF or 1 for ON. See MSDN for more information about the use of this flag.

    The following table shows the default settings.

    Permissions Read/Write
    Data type Boolean
    Label Require Microsoft-encrypted password
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • RequireMsEncryptedPw
    Used in the <entryname> characteristic to specify the setting of the RASEO_RequireMsEncryptedPw member of the RASENTRY structure. Permitted values are 0 for OFF or 1 for ON. See MSDN for more information about the use of this flag.

    The following table shows the default settings.

    Permissions Read/Write
    Data type Boolean
    Label Require Microsoft-encrypted password
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • RequirePw
    Used in the <entryname> characteristic to specify whether the system should prompt for a user name/password/domain name before dialing the phone number. If set to 1, the system prompts if no password or user name is provisioned. If set to 0, the system does not prompt for a password before dialing even if no password or user name is provisioned. For PPP connections, the default value of this parameter is 1.

    The following table shows the default settings.

    Permissions Read/Write
    Data type Integer
    Label Require Password Before Connecting
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • Script
    Used in the <entryname> characteristic. This value specifies a string containing the name of the script file. This value is placed in the szScript member of the RASENTRY structure. The name of the script file should be a full path.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • SpecificIpAddr
    This parm is used in the <entryname> characteristic and controls the setting of the RASEO_SpecificIpAddr member in the RASENTRY structure. Permitted values are 0 for OFF or 1 for ON. See MSDN for more information about the use of this member.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label IP address
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • SpecificNameServers
    Used in the <entryname> characteristic to specify the setting of the RASEO_SpecificIpAddr member of the RASENTRY structure. Permitted values are 0 for OFF or 1 for ON. See MSDN for more information about the use of this member.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label Specific name servers
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • SrcId
    Used in the <entryname> characteristic as a GUID that represents the unique ID of the network from which this entry connects. See the connmgr.h header file for predefined GUID values IID_DestNet*. Typically, a VPN connection connects from the Internet to a private network, so the value of SrcId would be that of IID_DestNetInternet, which is "{436EF144-B4FB-4863-A041-8F905A62C572}".

    The following table shows the default settings.

    Permissions read/write
    Data type string
    Label Connects from:
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • SwCompression
    Used in the <entryname> characteristic to specify the setting of the RASEO_SwCompression member of the RASENTRY structure. Permitted values are 0 for OFF or 1 for ON. See MSDN for more information about the use of this flag.

    The following table shows the default settings.

    Permissions Read/Write
    Data type Boolean
    Label Use software compression
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • Type
    Used in the <entryname> characteristic to specify the VPN type. Possible values are:

    • 0 for PPTP
    • 1 for IPSec/L2TP

    The following table shows the default settings.

    Permissions Read/write
    Data type String
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • UseCountryAndAreaCodes
    Uused in the <entryname> characteristic to control the setting of the RASEO_UseCountryAndAreaCodes member in the RASENTRY structure. Permitted values are 0 for OFF or 1 for ON. See MSDN for more information about the use of this flag. For VPN connections, this member is ignored.

    Note  For cellular devices, this flag is typically ignored, and the system is programmed to dial the full canonical number; for example, "+<country code><area code><local number>".

    The following table shows the default settings.

    Permissions Read/Write
    Data type Boolean
    Label Use country and area codes
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • UserName
    Used in the <entryname> characteristic. This value specifies the user name to be used during authentication. This value is placed in the szUserName member of the RASDIALPARAMS structure. If this parameter is left empty, the operating system optionally automatically prompts for the user name and password when making a connection.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label User name:
    Roles allowed to query and update setting Manager

    AuthenticatedUser

  • WinsAddr
    Used in the <entryname> characteristic. This value specifies the IP address of the WINS server to be used while this connection is active. This value is placed in the ipaddrWins member of the RASENTRY structure. This member is ignored unless dwfOptions specifies the RASEO_SpecificNameServers member.

    The following table shows the default settings.

    Permissions Read/Write
    Data type String
    Label WINS Address
    Roles allowed to query and update setting Manager

    AuthenticatedUser

Elements

Elements Available
noparm No
nocharacteristic Yes
characteristic-query Yes
parm-query Yes

For information about specific elements, see MSPROV DTD Elements.

See Also

Configuration Service Provider Reference for Windows Mobile Devices| CM_VPNEntries Configuration Service Provider Examples

Send feedback on this topic to the authors.

© 2005 Microsoft Corporation. All rights reserved.