MSFT_NetSARule, ROOT\StandardCimv2\MS_409

Class | Childs (2) | Methods | Properties (35) | Qualifiers (3) | Instances | Namespaces (2)
Samples: VB Script | C# | VB.Net | Search on:Microsoft

Description

Represents an IPsec Rule. Subtypes differentiate between Connection Security Rules (MSFT_NetConSecRule) and Main Mode Rules (MSFT_NetMainModeRule).

MSFT_NetSARule - child subclasses in ROOT\StandardCimv2\MS_409

Number of classes:2
Class nameChildsPropertiesMethodsClass
Instances
Child
Instances
AbstractSingleton
MSFT_NetConSecRule0498----
MSFT_NetMainModeRule0354----

MSFT_NetSARule properties

MSFT_NetSARule has 35 properties (15 Local, 20 Derived)

NameOriginCIMType
CaptionCIM_ManagedElement8 [string]
CommonNameCIM_Policy8 [string]
ConditionListTypeCIM_PolicyRule18 [uint16]
key
CreationClassName
CIM_PolicyRule8 [string]
DescriptionCIM_ManagedElement8 [string]
DisplayGroupMSFT_NetSARule8 [string]
DisplayNameMSFT_NetSARule8 [string]
ElementNameCIM_ManagedElement8 [string]
EnabledCIM_PolicySet18 [uint16]
EnforcementStatusMSFT_NetSARule18 [uint16]
ExecutionStrategyCIM_PolicyRule18 [uint16]
InstanceIDCIM_ManagedElement8 [string]
LimitNegotiationCIM_SARule18 [uint16]
MainModeCryptoSetMSFT_NetSARule8 [string]
MandatoryCIM_PolicyRule11 [boolean]
Phase1AuthSetMSFT_NetSARule8 [string]
Phase2AuthSetMSFT_NetSARule8 [string]
PlatformsMSFT_NetSARule8 [string]
PolicyDecisionStrategyCIM_PolicySet18 [uint16]
PolicyKeywordsCIM_Policy8 [string]
PolicyRolesCIM_PolicySet8 [string]
key
PolicyRuleName
CIM_PolicyRule8 [string]
PolicyStoreSourceMSFT_NetSARule8 [string]
PolicyStoreSourceTypeMSFT_NetSARule18 [uint16]
PrimaryStatusMSFT_NetSARule18 [uint16]
PriorityCIM_PolicyRule18 [uint16]
ProfilesMSFT_NetSARule18 [uint16]
QuickModeCryptoSetMSFT_NetSARule8 [string]
RuleGroupMSFT_NetSARule8 [string]
RuleUsageCIM_PolicyRule8 [string]
SequencedActionsCIM_PolicyRule18 [uint16]
StatusMSFT_NetSARule8 [string]
StatusCodeMSFT_NetSARule19 [uint32]
key
SystemCreationClassName
CIM_PolicyRule8 [string]
key
SystemName
CIM_PolicyRule8 [string]

Detailed description of MSFT_NetSARule properties

Local properties (15) of MSFT_NetSARule class

DisplayGroup property
CIMTYPE'string'
Description'The group that this rule belongs to. This field is based on the value of RuleGroup and changes to this field are ignored.'
DisplayGroup property is in 10 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
DisplayName property
CIMTYPE'string'
Description'The localized name of this rule. This field's value is based on the value of ElementName. Changes to this field are ignored.'
DisplayName property is in 12 classes of ROOT\StandardCimv2\MS_409 and in 30 namespaces
EnforcementStatus property
CIMTYPE'uint16'
Description'If this object is retrieved from the ActiveStore, describes the current enforcement status of the rule.'
Values['Invalid', 'Full', 'FirewallOffInProfile', 'CategoryOff', 'DisabledObject', 'InactiveProfile', 'LocalAddressResolutionEmpty', 'RemoteAddressResolutionEmpty', 'LocalPortResolutionEmpty', 'RemotePortResolutionEmpty', 'InterfaceResolutionEmpty', 'ApplicationResolutionEmpty', 'RemoteMachineEmpty', 'RemoteUserEmpty', 'LocalGlobalOpenPortsDisallowed', 'LocalAuthorizedApplicationsDisallowed', 'LocalFirewallRulesDisallowed', 'LocalConsecRulesDisallowed', 'NotTargetPlatform', 'OptimizedOut', 'LocalUserEmpty', 'TransportMachinesEmpty', 'TunnelMachinesEmpty', 'TupleResolutionEmpty']
EnforcementStatus property is in 10 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
MainModeCryptoSet property
CIMTYPE'string'
Description'The InstanceID of the MainModeCryptoSet to use for Main Mode.'
MainModeCryptoSet property is in 3 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
Phase1AuthSet property
CIMTYPE'string'
Description'The InstanceID of the Phase1AuthenticationSet to use for Phase 1 auth.'
Phase1AuthSet property is in 3 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
Phase2AuthSet property
CIMTYPE'string'
Description'The InstanceID of the Phase2AuthenticationSet to use for Phase 2 auth.'
Phase2AuthSet property is in 3 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
Platforms property
CIMTYPE'string'
Description'Specifies which platforms the rule is applicable on. If null, the rule applies to all platforms (the default). Each entry takes the form Major.Minor+, for instance 6.0, 6.1+, or 6.2. If + is specified, then it means that the rule applies to that version or greater. For instance, Windows Vista could be represented as 6 or 6.0, and Windows 7 or later would be represented as 6.1+. + may only be attached to the final item in the list. 6.0+ is not valid because it means the same thing as null (all platforms).'
Platforms property is in 4 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
PolicyStoreSource property
CIMTYPE'string'
Description'If this object is retrieved from the ActiveStore, with the TracePolicyStoreSource option set, contains the path to the PolicyStore where this rule originally came from.'
PolicyStoreSource property is in 10 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
PolicyStoreSourceType property
CIMTYPE'uint16'
Description'If this object is retrieved from the ActiveStore, with the TracePolicyStoreSource option set, describes the type of PolicyStore where this rule originally came from.'
PolicyStoreSourceType property is in 10 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
PrimaryStatus property
CIMTYPE'uint16'
Description'PrimaryStatus provides a high level status value, intended to align with Red-Yellow-Green type representation of status. It should be used in conjunction with DetailedStatus to provide high level and detailed health status of the ManagedElement and its subcomponents.
PrimaryStatus consists of one of the following values: Unknown, OK, Degraded or Error. "Unknown" indicates the implementation is in general capable of returning this property, but is unable to do so at this time.
"OK" indicates the ManagedElement is functioning normally.
"Degraded" indicates the ManagedElement is functioning below normal.
"Error" indicates the ManagedElement is in an Error condition.
'
Values['Unknown', 'OK', 'Degraded', 'Error', 'DMTF Reserved', 'Vendor Reserved']
PrimaryStatus property is in 71 classes of ROOT\StandardCimv2\MS_409 and in 9 namespaces
Profiles property
CIMTYPE'uint16'
Description'Which profiles this rule is active on.'
Values['Any', 'Public', 'Private', 'Domain']
Profiles property is in 4 classes of ROOT\StandardCimv2\MS_409 and in 4 namespaces
QuickModeCryptoSet property
CIMTYPE'string'
Description'The InstanceID of the QuickModeCryptoSet to use for Quick Mode.'
QuickModeCryptoSet property is in 3 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
RuleGroup property
CIMTYPE'string'
Description'The locale-independent name for the group that this rule belongs to. If this field is non-null, then Windows Firewall with Advanced Security assumes that this rule belongs to a Windows component or an installed application, and some parts of the rule are protected (including but not limited to the Name, Description, Program, and Service).'
RuleGroup property is in 10 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
Status property
CIMTYPE'string'
Description'The detailed status of the rule, as a string.'
Status property is in 72 classes of ROOT\StandardCimv2\MS_409 and in 42 namespaces
StatusCode property
CIMTYPE'uint32'
Description'The detailed status of the rule, as a numeric error code.'
StatusCode property is in 12 classes of ROOT\StandardCimv2\MS_409 and in 142 namespaces

Derived properties (20) of MSFT_NetSARule class

Caption property
CIMTYPE'string'
Description'The Caption property is a short textual description (one- line string) of the object.'
Caption property is in 153 classes of ROOT\StandardCimv2\MS_409 and in 37 namespaces
CommonName property
CIMTYPE'string'
Description'A user-friendly name of this policy-related object.'
CommonName property is in 20 classes of ROOT\StandardCimv2\MS_409 and in 5 namespaces
ConditionListType property
CIMTYPE'uint16'
Description'Indicates whether the list of PolicyConditions associated with this PolicyRule is in disjunctive normal form (DNF), conjunctive normal form (CNF), or has no conditions (i.e., is an UnconditionalRule) and is automatically evaluated to "True." The default value is 1 ("DNF").'
Values['Unconditional Rule', 'DNF', 'CNF']
ConditionListType property is in 6 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
CreationClassName property
CIMTYPE'string'
Description'CreationClassName indicates the name of the class or the subclass used in the creation of an instance. When used with the other key properties of this class, this property allows all instances of this class and its subclasses to be uniquely identified.'
keyTrue
CreationClassName property is in 47 classes of ROOT\StandardCimv2\MS_409 and in 20 namespaces
Description property
CIMTYPE'string'
Description'The Description property provides a textual description of the object.'
Description property is in 154 classes of ROOT\StandardCimv2\MS_409 and in 142 namespaces
ElementName property
CIMTYPE'string'
Description'A user-friendly name for the object. This property allows each instance to define a user-friendly name in addition to its key properties, identity data, and description information.
Note that the Name property of ManagedSystemElement is also defined as a user-friendly name. But, it is often subclassed to be a Key. It is not reasonable that the same property can convey both identity and a user-friendly name, without inconsistencies. Where Name exists and is not a Key (such as for instances of LogicalDevice), the same information can be present in both the Name and ElementName properties. Note that if there is an associated instance of CIM_EnabledLogicalElementCapabilities, restrictions on this properties may exist as defined in ElementNameMask and MaxElementNameLen properties defined in that class.'
ElementName property is in 153 classes of ROOT\StandardCimv2\MS_409 and in 21 namespaces
Enabled property
CIMTYPE'uint16'
Description'Indicates whether this PolicySet is administratively enabled, administratively disabled, or enabled for debug. The "EnabledForDebug" property value is deprecated and, when it or any value not understood by the receiver is specified, the receiving enforcement point treats the PolicySet as "Disabled". To determine if a PolicySet is "Enabled", the containment hierarchy specified by the PolicySetComponent aggregation is examined and the Enabled property values of the hierarchy are ANDed together. Thus, for example, everything aggregated by a PolicyGroup may be disabled by setting the Enabled property in the PolicyGroup instance to "Disabled" without changing the Enabled property values of any of the aggregated instances. The default value is 1 ("Enabled").'
Values['Enabled', 'Disabled', 'Enabled For Debug']
Enabled property is in 15 classes of ROOT\StandardCimv2\MS_409 and in 142 namespaces
ExecutionStrategy property
CIMTYPE'uint16'
Description'ExecutionStrategy defines the strategy to be used in executing the sequenced actions aggregated by this PolicyRule. There are three execution strategies:

Do Until Success - execute actions according to predefined order, until successful execution of a single action.
Do All - execute ALL actions which are part of the modeled set, according to their predefined order. Continue doing this, even if one or more of the actions fails.
Do Until Failure - execute actions according to predefined order, until the first failure in execution of an action instance.'
Values['Do Until Success', 'Do All', 'Do Until Failure']
ExecutionStrategy property is in 6 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
InstanceID property
CIMTYPE'string'
Description'InstanceID is an optional property that may be used to opaquely and uniquely identify an instance of this class within the scope of the instantiating Namespace. Various subclasses of this class may override this property to make it required, or a key. Such subclasses may also modify the preferred algorithms for ensuring uniqueness that are defined below.
To ensure uniqueness within the NameSpace, the value of InstanceID should be constructed using the following "preferred" algorithm:
:
Where and are separated by a colon (:), and where must include a copyrighted, trademarked, or otherwise unique name that is owned by the business entity that is creating or defining the InstanceID or that is a registered ID assigned to the business entity by a recognized global authority. (This requirement is similar to the _ structure of Schema class names.) In addition, to ensure uniqueness, must not contain a colon (:). When using this algorithm, the first colon to appear in InstanceID must appear between and .
is chosen by the business entity and should not be reused to identify different underlying (real-world) elements. If not null and the above "preferred" algorithm is not used, the defining entity must assure that the resulting InstanceID is not reused across any InstanceIDs produced by this or other providers for the NameSpace of this instance.
If not set to null for DMTF-defined instances, the "preferred" algorithm must be used with the set to CIM.'
InstanceID property is in 153 classes of ROOT\StandardCimv2\MS_409 and in 21 namespaces
LimitNegotiation property
CIMTYPE'uint16'
Description'LimitNegotiation is used as part of processing either a key exchange or IPsec Rule. Before proceeding with either a phase 1 or a phase 2 negotiation, this property is checked to determine if the negotiation role of the Rule matches that defined for the negotiation being undertaken (e.g., Initiator, Responder, or Both). If this check fails, then the negotiation is stopped. Note that this only applies to new negotiations and has no effect on either renegotiation or refresh operations with peers for which an established Security Association already exists.'
Values['Initiator-Only', 'Responder-Only', 'Either']
LimitNegotiation property is in 4 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
Mandatory property
CIMTYPE'boolean'
Description'A flag indicating that the evaluation of the Policy Conditions and execution of PolicyActions (if the Conditions evaluate to TRUE) is required. The evaluation of a PolicyRule MUST be attempted if the Mandatory property value is TRUE. If the Mandatory property is FALSE, then the evaluation of the Rule is \'best effort\' and MAY be ignored.'
Mandatory property is in 6 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
PolicyDecisionStrategy property
CIMTYPE'uint16'
Description'PolicyDecisionStrategy defines the evaluation method used for policies contained in the PolicySet. There are two values currently defined:
- \'First Matching\' (1) executes the actions of the first rule whose conditions evaluate to TRUE. The concept of \'first\' is determined by examining the priority of the rule within the policy set (i.e., by examining the property, PolicySetComponent.Priority). Note that this ordering property MUST be maintained when processing the PolicyDecisionStrategy.
- \'All\' (2) executes the actions of ALL rules whose conditions evaluate to TRUE, in the set. As noted above, the order of processing of the rules is defined by the property, PolicySetComponent.Priority (and within a rule, the ordering of the actions is defined by the property, PolicyActionStructure.ActionOrder). Note that when this strategy is defined, processing MUST be completed of ALL rules whose conditions evaluate to TRUE, regardless of errors in the execution of the rule actions.'
Values['First Matching', 'All']
PolicyDecisionStrategy property is in 7 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
PolicyKeywords property
CIMTYPE'string'
Description'An array of keywords for characterizing / categorizing policy objects. Keywords are of one of two types:
- Keywords defined in this and other MOFs, or in DMTF white papers. These keywords provide a vendor- independent, installation-independent way of characterizing policy objects.
- Installation-dependent keywords for characterizing policy objects. Examples include \'Engineering\', \'Billing\', and \'Review in December 2000\'.
This MOF defines the following keywords: \'UNKNOWN\', \'CONFIGURATION\', \'USAGE\', \'SECURITY\', \'SERVICE\', \'MOTIVATIONAL\', \'INSTALLATION\', and \'EVENT\'. These concepts are self-explanatory and are further discussed in the SLA/Policy White Paper. One additional keyword is defined: \'POLICY\'. The role of this keyword is to identify policy-related instances that may not be otherwise identifiable, in some implementations. The keyword \'POLICY\' is NOT mutually exclusive of the other keywords specified above.'
PolicyKeywords property is in 20 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
PolicyRoles property
CIMTYPE'string'
Description'The PolicyRoles property represents the roles associated with a PolicySet. All contained PolicySet instances inherit the values of the PolicyRoles of the aggregating PolicySet but the values are not copied. A contained PolicySet instance may, however, add additional PolicyRoles to those it inherits from its aggregating PolicySet(s). Each value in PolicyRoles multi-valued property represents a role for which the PolicySet applies, i.e., the PolicySet should be used by any enforcement point that assumes any of the listed PolicyRoles values.

Although not officially designated as \'role combinations\', multiple roles may be specified using the form:
[&&]*
where the individual role names appear in alphabetical order (according to the collating sequence for UCS-2). Implementations may treat PolicyRoles values that are specified as \'role combinations\' as simple strings.

This property is deprecated in lieu of the use of an association, CIM_PolicySetInRoleCollection. The latter is a more explicit and less error-prone approach to modeling that a PolicySet has one or more PolicyRoles.'
PolicyRoles property is in 7 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
PolicyRuleName property
CIMTYPE'string'
Description'A user-friendly name of this PolicyRule.'
keyTrue
PolicyRuleName property is in 18 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
Priority property
CIMTYPE'uint16'
Description'PolicyRule.Priority is deprecated and replaced by providing the priority for a rule (and a group) in the context of the aggregating PolicySet instead of the priority being used for all aggregating PolicySet instances. Thus, the assignment of priority values is much simpler.

A non-negative integer for prioritizing this Policy Rule relative to other Rules. A larger value indicates a higher priority. The default value is 0.'
Priority property is in 28 classes of ROOT\StandardCimv2\MS_409 and in 31 namespaces
RuleUsage property
CIMTYPE'string'
Description'A free-form string that can be used to provide guidelines on how this PolicyRule should be used.'
RuleUsage property is in 6 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
SequencedActions property
CIMTYPE'uint16'
Description'This property gives a policy administrator a way of specifying how the ordering of the PolicyActions associated with this PolicyRule is to be interpreted. Three values are supported:
o mandatory(1): Do the actions in the indicated order, or don\'t do them at all.
o recommended(2): Do the actions in the indicated order if you can, but if you can\'t do them in this order, do them in another order if you can.
o dontCare(3): Do them -- I don\'t care about the order.
The default value is 3 ("DontCare").'
Values['Mandatory', 'Recommended', 'Dont Care']
SequencedActions property is in 6 classes of ROOT\StandardCimv2\MS_409 and in 2 namespaces
SystemCreationClassName property
CIMTYPE'string'
Description'The scoping System\'s CreationClassName.'
keyTrue
SystemCreationClassName property is in 47 classes of ROOT\StandardCimv2\MS_409 and in 20 namespaces
SystemName property
CIMTYPE'string'
Description'The scoping System\'s Name.'
keyTrue
SystemName property is in 66 classes of ROOT\StandardCimv2\MS_409 and in 22 namespaces

MSFT_NetSARule Qualifiers

NameValueToInstanceToSubclassOverridableAmendedLocal
AMENDMENTTrue
Description'Represents an IPsec Rule. Subtypes differentiate between Connection Security Rules (MSFT_NetConSecRule) and Main Mode Rules (MSFT_NetMainModeRule).'
LOCALE'MS_409'

MSFT_NetSARule System properties

NameValueOriginCIMTypeLocalArray
__PATH'\\.\ROOT\StandardCimv2\MS_409:MSFT_NetSARule'___SYSTEM8
__NAMESPACE'ROOT\StandardCimv2\MS_409'___SYSTEM8
__SERVER'.'___SYSTEM8
__DERIVATION['CIM_SARule', 'CIM_PolicyRule', 'CIM_PolicySet', 'CIM_Policy', 'CIM_ManagedElement']___SYSTEM8
__PROPERTY_COUNT35___SYSTEM3
__RELPATH'MSFT_NetSARule'___SYSTEM8
__DYNASTY'CIM_ManagedElement'___SYSTEM8
__SUPERCLASS'CIM_SARule'___SYSTEM8
__CLASS'MSFT_NetSARule'___SYSTEM8
__GENUS1___SYSTEM3

Similar Classes to MSFT_NetSARule

Number of classes:4
Class nameChildsPropertiesMethodsClass
Instances
Child
Instances
AbstractSingleton
MSFT_NetSARuleEMAuth130----
MSFT_NetSARuleMMAuth230----
MSFT_NetSARuleMMCrypto130----
MSFT_NetSARuleQMCrypto130----
comments powered by Disqus
WUtils.com