CIM211 Class Declaration
CIM_IKEAction

Table of Contents:
Class Hierarchy
Class Attributes
Class Qualifiers
Properties
Methods
Associations in which the class can participate
Sub Profiling Summary

Class Hierarchy

CIM_IKEAction --> CIM_SANegotiationAction --> CIM_SAAction --> CIM_PolicyAction --> CIM_Policy --> CIM_ManagedElement --> [top]

Class Attributes

Class Declaration Attributes
NameValue
SUPERCLASSCIM_SANegotiationAction
NAMECIM_IKEAction

Class Qualifiers

Class CIM_IKEAction Qualifiers
NameTypeValueFrom Class
Versionstring2.8.0 CIM_IKEAction
DescriptionstringIKEAction specifies the parameters to use for an IPsec IKE phase 1 negotiation. CIM_IKEAction
MappingStringsstringIPSP Policy Model.IETF|IKEAction CIM_IKEAction
DescriptionstringSANegotiationAction is the base class for negotiated SAs. It is abstract, specifying the common parameters that control the IPsec phase 1 and phase 2 negotiations. CIM_SANegotiationAction
MappingStringsstringIPSP Policy Model.IETF|SANegotiationAction
IPSP Policy Model.IETF|IKENegotiationAction
CIM_SANegotiationAction
DescriptionstringSAAction is the base class for the various types of key exchange or IPsec actions. It is abstract and used to categorize the different types of actions of SARules. CIM_SAAction
MappingStringsstringIPSP Policy Model.IETF|SAAction CIM_SAAction
DescriptionstringA class representing a rule-specific or reusable policy action to be performed if the PolicyConditions for a Policy Rule evaluate to TRUE. Since all operational details of a PolicyAction are provided in subclasses of this object, this class is abstract. CIM_PolicyAction
DescriptionstringAn abstract class defining the common properties of the policy managed elements derived from CIM_Policy. The subclasses are used to create rules and groups of rules that work together to form a coherent set of policies within an administrative domain or set of domains. CIM_Policy
DescriptionstringManagedElement is an abstract class that provides a common superclass (or top of the inheritance tree) for the non-association classes in the CIM Schema. CIM_ManagedElement

Properties

Properties
NameTypeValueQualifiersClassOrigin
ExchangeModeuint16 Description
ValueMap
Values
MappingStrings
CIM_IKEAction
UseIKEIdentityTypeuint16 Description
ValueMap
Values
MappingStrings
ModelCorrespondence
CIM_IKEAction
VendorIDstringnoneDescription
MappingStrings
CIM_IKEAction
AggressiveModeGroupIDuint16 Description
ValueMap
Values
MappingStrings
ModelCorrespondence
CIM_IKEAction
MinLifetimeSecondsuint640 Description
Units
MappingStrings
ModelCorrespondence
CIM_SANegotiationAction
IdleDurationSecondsuint640 Description
Units
MappingStrings
ModelCorrespondence
CIM_SANegotiationAction
MinLifetimeKilobytesuint640 Description
Units
MappingStrings
ModelCorrespondence
CIM_SANegotiationAction
DoPacketLoggingboolean Description
MappingStrings
ModelCorrespondence
CIM_SAAction
SystemCreationClassNamestring Key
Description
MaxLen
CIM_PolicyAction
SystemNamestring Key
Description
MaxLen
CIM_PolicyAction
PolicyRuleCreationClassNamestring Key
Description
MaxLen
CIM_PolicyAction
PolicyRuleNamestring Key
Description
MaxLen
CIM_PolicyAction
CreationClassNamestring Key
Description
MaxLen
CIM_PolicyAction
PolicyActionNamestring Key
Description
MaxLen
CIM_PolicyAction
DoActionLoggingboolean Description CIM_PolicyAction
CommonNamestring Description CIM_Policy
PolicyKeywordsstring[] Description CIM_Policy
Captionstring Description
MaxLen
CIM_ManagedElement
Descriptionstring Description CIM_ManagedElement
ElementNamestring Description CIM_ManagedElement

Property Qualifiers

Property ExchangeMode Qualifiers
NameTypeValueFrom Class
DescriptionstringThe ExchangeMode designates the mode IKE should use for its key negotiations. CIM_IKEAction
ValueMapstring
[See below.]
CIM_IKEAction
ValuesstringBase
Main
Aggressive
CIM_IKEAction
MappingStringsstringIPSP Policy Model.IETF|IKEAction.ExchangeMode CIM_IKEAction

NameValue
2Base
3Main
4Aggressive
Property UseIKEIdentityType Qualifiers
NameTypeValueFrom Class
DescriptionstringUseIKEIdentityType specifies what network identity type should be used when negotiating with the peer. It is used in conjunction with the available IPNetworkIdentity instances, that are associated with an IPProtocolEndpoint. CIM_IKEAction
ValueMapstring
[See below.]
CIM_IKEAction
ValuesstringOther
IPV4 Address
FQDN
User FQDN
IPV4 Subnet Address
IPV6 Address
IPV6 Subnet Address
IPV4 Address Range
IPV6 Address Range
DER ASN1 DN
DER ASN1 GN
KEY ID
DMTF Reserved
Vendor Reserved
CIM_IKEAction
MappingStringsstringIPSP Policy Model.IETF|IKEAction.UseIKEIdentityType
RFC2407.IETF|Section 4.6.2.1
CIM_IKEAction
ModelCorrespondencestringCIM_IPNetworkIdentity.IdentityType CIM_IKEAction

NameValue
1Other
2IPV4 Address
3FQDN
4User FQDN
5IPV4 Subnet Address
6IPV6 Address
7IPV6 Subnet Address
8IPV4 Address Range
9IPV6 Address Range
10DER ASN1 DN
11DER ASN1 GN
12KEY ID
..DMTF Reserved
0x8000..Vendor Reserved
Property VendorID Qualifiers
NameTypeValueFrom Class
DescriptionstringVendorID specifies the value to be used in the Vendor ID payload. An empty string (the default) means that the Vendor ID payload will not be generated or accepted. A non-NULL value means that a Vendor ID payload will be generated (when acting as an initiator) or is expected (when acting as a responder). CIM_IKEAction
MappingStringsstringIPSP Policy Model.IETF|IKEAction.VendorID CIM_IKEAction

Property AggressiveModeGroupID Qualifiers
NameTypeValueFrom Class
DescriptionstringWhen IKEAction.ExchangeMode is set to " Aggressive " (4), this property specifies the key exchange groupID to use in the first packets of the phase 1 negotiation. This property is ignored unless the ExchangeMode is ’ aggressive ’ . If the GroupID number is from the vendor- specific range (32768-65535), the VendorID qualifies the group number. Well-known group identifiers from RFC2412, Appendix E, are: Group 1= ’ 768 bit prime ’ , Group 2= ’ 1024 bit prime ’ , Group 3= ’ Elliptic Curve Group with 155 bit field element ’ , Group 4= ’ Large Elliptic Curve Group with 185 bit field element ’ , and Group 5= ’ 1536 bit prime ’ . CIM_IKEAction
ValueMapstring
[See below.]
CIM_IKEAction
ValuesstringNo Group/Non-Diffie-Hellman Exchange
DH-768 bit prime
DH-1024 bit prime
EC2N-155 bit field element
EC2N-185 bit field element
DH-1536 bit prime
Standard Group - Reserved
Vendor Reserved
CIM_IKEAction
MappingStringsstringIPSP Policy Model.IETF|IKEAction.AggressiveModeGroupID
RFC2412.IETF|Appendix E
CIM_IKEAction
ModelCorrespondencestringCIM_IKEAction.VendorID CIM_IKEAction

NameValue
0No Group/Non-Diffie-Hellman Exchange
1DH-768 bit prime
2DH-1024 bit prime
3EC2N-155 bit field element
4EC2N-185 bit field element
5DH-1536 bit prime
..Standard Group - Reserved
0x8000..Vendor Reserved
Property MinLifetimeSeconds Qualifiers
NameTypeValueFrom Class
DescriptionstringMinLifetimeSeconds prevents certain denial of service attacks where the peer requests an arbitrarily low lifetime value, causing renegotiations with expensive Diffie-Hellman operations. The property specifies the minimum lifetime, in seconds, that will be accepted from the peer. A value of zero (the default) indicates that there is no minimum value. A non-zero value specifies the minimum seconds lifetime. CIM_SANegotiationAction
UnitsstringSeconds CIM_SANegotiationAction
MappingStringsstringIPSP Policy Model.IETF|IKENegotiationAction.MinLifetimeSeconds CIM_SANegotiationAction
ModelCorrespondencestringCIM_SecurityAssociationEndpoint.LifetimeSeconds CIM_SANegotiationAction

Property IdleDurationSeconds Qualifiers
NameTypeValueFrom Class
DescriptionstringIdleDurationSeconds is the time an SA can remain idle (i.e., no traffic protected using the security association) before it is automatically deleted. The default (zero) value indicates that there is no idle duration timer and that the SA is deleted based upon the SA seconds and kilobyte lifetimes. Any non-zero value indicates the number of seconds that the SA may remain unused. CIM_SANegotiationAction
UnitsstringSeconds CIM_SANegotiationAction
MappingStringsstringIPSP Policy Model.IETF|IKENegotiationAction.IdleDurationSeconds CIM_SANegotiationAction
ModelCorrespondencestringCIM_SecurityAssociationEndpoint.IdleDurationSeconds CIM_SANegotiationAction

Property MinLifetimeKilobytes Qualifiers
NameTypeValueFrom Class
DescriptionstringMinLifetimeKilobytes prevents certain denial of service attacks where the peer requests an arbitrarily low lifetime value, causing renegotiations with expensive Diffie-Hellman operations. The property specifies the minimum lifetime, in kilobytes, that will be accepted from the peer. A value of zero (the default) indicates that there is no minimum value. A non-zero value specifies the minimum kilobytes lifetime. Note that there has been considerable debate regarding the usefulness of applying kilobyte lifetimes to phase 1 security associations, so it is likely that this property will only apply to the subclass, IPsecAction. CIM_SANegotiationAction
UnitsstringKiloBytes CIM_SANegotiationAction
MappingStringsstringIPSP Policy Model.IETF|IKENegotiationAction.MinLifetimeKilobytes CIM_SANegotiationAction
ModelCorrespondencestringCIM_SecurityAssociationEndpoint.LifetimeKilobytes CIM_SANegotiationAction

Property DoPacketLogging Qualifiers
NameTypeValueFrom Class
DescriptionstringDoPacketLogging causes a log message to be generated when the action is applied to a packet. CIM_SAAction
MappingStringsstringIPSP Policy Model.IETF|SAAction.DoPacketLogging CIM_SAAction
ModelCorrespondencestringCIM_SecurityAssociationEndpoint.PacketLoggingActive CIM_SAAction

Property SystemCreationClassName Qualifiers
NameTypeValueFrom Class
Keybooleantrue CIM_PolicyAction
DescriptionstringThe name of the class or the subclass used in the creation of the System object in whose scope this PolicyAction is defined. This property helps to identify the System object in whose scope this instance of PolicyAction exists. For a rule-specific PolicyAction, this is the System in whose context the PolicyRule is defined. For a reusable PolicyAction, this is the instance of PolicyRepository (which is a subclass of System) that holds the Action. Note that this property, and the analogous property SystemName, do not represent propagated keys from an instance of the class System. Instead, they are properties defined in the context of this class, which repeat the values from the instance of System to which this PolicyAction is related, either directly via the PolicyActionInPolicyRepository association or indirectly via the PolicyActionInPolicyRule aggregation. CIM_PolicyAction
MaxLenuint32256 CIM_PolicyAction

Property SystemName Qualifiers
NameTypeValueFrom Class
Keybooleantrue CIM_PolicyAction
DescriptionstringThe name of the System object in whose scope this PolicyAction is defined. This property completes the identification of the System object in whose scope this instance of PolicyAction exists. For a rule-specific PolicyAction, this is the System in whose context the PolicyRule is defined. For a reusable PolicyAction, this is the instance of PolicyRepository (which is a subclass of System) that holds the Action. CIM_PolicyAction
MaxLenuint32256 CIM_PolicyAction

Property PolicyRuleCreationClassName Qualifiers
NameTypeValueFrom Class
Keybooleantrue CIM_PolicyAction
DescriptionstringFor a rule-specific PolicyAction, the CreationClassName of the PolicyRule object with which this Action is associated. For a reusable PolicyAction, a special value, ’ NO RULE ’ , should be used to indicate that this Action is reusable and not associated with a single PolicyRule. CIM_PolicyAction
MaxLenuint32256 CIM_PolicyAction

Property PolicyRuleName Qualifiers
NameTypeValueFrom Class
Keybooleantrue CIM_PolicyAction
DescriptionstringFor a rule-specific PolicyAction, the name of the PolicyRule object with which this Action is associated. For a reusable PolicyAction, a special value, ’ NO RULE ’ , should be used to indicate that this Action is reusable and not associated with a single PolicyRule. CIM_PolicyAction
MaxLenuint32256 CIM_PolicyAction

Property CreationClassName Qualifiers
NameTypeValueFrom Class
Keybooleantrue CIM_PolicyAction
DescriptionstringCreationClassName indicates the name of the class or the subclass used in the creation of an instance. When used with the other key properties of this class, this property allows all instances of this class and its subclasses to be uniquely identified. CIM_PolicyAction
MaxLenuint32256 CIM_PolicyAction

Property PolicyActionName Qualifiers
NameTypeValueFrom Class
Keybooleantrue CIM_PolicyAction
DescriptionstringA user-friendly name of this PolicyAction. CIM_PolicyAction
MaxLenuint32256 CIM_PolicyAction

Property DoActionLogging Qualifiers
NameTypeValueFrom Class
DescriptionstringDoActionLogging causes a log message to be generated when the action is performed. CIM_PolicyAction

Property CommonName Qualifiers
NameTypeValueFrom Class
DescriptionstringA user-friendly name of this policy-related object. CIM_Policy

Property PolicyKeywords Qualifiers
NameTypeValueFrom Class
DescriptionstringAn array of keywords for characterizing / categorizing policy objects. Keywords are of one of two types: - Keywords defined in this and other MOFs, or in DMTF white papers. These keywords provide a vendor- independent, installation-independent way of characterizing policy objects. - Installation-dependent keywords for characterizing policy objects. Examples include ’ Engineering ’ , ’ Billing ’ , and ’ Review in December 2000 ’ . This MOF defines the following keywords: ’ UNKNOWN ’ , ’ CONFIGURATION ’ , ’ USAGE ’ , ’ SECURITY ’ , ’ SERVICE ’ , ’ MOTIVATIONAL ’ , ’ INSTALLATION ’ , and ’ EVENT ’ . These concepts are self-explanatory and are further discussed in the SLA/Policy White Paper. One additional keyword is defined: ’ POLICY ’ . The role of this keyword is to identify policy-related instances that may not be otherwise identifiable, in some implementations. The keyword ’ POLICY ’ is NOT mutually exclusive of the other keywords specified above. CIM_Policy

Property Caption Qualifiers
NameTypeValueFrom Class
DescriptionstringThe Caption property is a short textual description (one- line string) of the object. CIM_ManagedElement
MaxLenuint3264 CIM_ManagedElement

Property Description Qualifiers
NameTypeValueFrom Class
DescriptionstringThe Description property provides a textual description of the object. CIM_ManagedElement

Property ElementName Qualifiers
NameTypeValueFrom Class
DescriptionstringA user-friendly name for the object. This property allows each instance to define a user-friendly name in addition to its key properties, identity data, and description information. Note that the Name property of ManagedSystemElement is also defined as a user-friendly name. But, it is often subclassed to be a Key. It is not reasonable that the same property can convey both identity and a user-friendly name, without inconsistencies. Where Name exists and is not a Key (such as for instances of LogicalDevice), the same information can be present in both the Name and ElementName properties. CIM_ManagedElement

Methods

Method Qualifiers

Parameters

Parameter Qualifiers

Associations this class can participate in

Association
Class
Reference
Class
Role
CIM_ContainedProposalCIM_SANegotiationActionGroupComponent
CIM_PolicyActionStructureCIM_PolicyActionPartComponent
CIM_PolicyActionInPolicyActionCIM_PolicyActionPartComponent
CIM_PolicyActionInPolicyRuleCIM_PolicyActionPartComponent
CIM_PolicyActionInPolicyRepositoryCIM_PolicyActionDependent
CIM_PolicyComponentCIM_PolicyGroupComponent
CIM_PolicyComponentCIM_PolicyPartComponent
CIM_PolicyConditionStructureCIM_PolicyGroupComponent
CIM_PolicyActionStructureCIM_PolicyGroupComponent
CIM_PolicyInSystemCIM_PolicyDependent
CIM_ReusablePolicyCIM_PolicyDependent
CIM_ComponentCIM_ManagedElementGroupComponent
CIM_ComponentCIM_ManagedElementPartComponent
CIM_ConcreteComponentCIM_ManagedElementGroupComponent
CIM_ConcreteComponentCIM_ManagedElementPartComponent
CIM_CredentialContextCIM_ManagedElementElementProvidingContext
CIM_DefaultElementCapabilitiesCIM_ManagedElementManagedElement
CIM_DependencyCIM_ManagedElementAntecedent
CIM_DependencyCIM_ManagedElementDependent
CIM_HostedDependencyCIM_ManagedElementAntecedent
CIM_HostedDependencyCIM_ManagedElementDependent
CIM_ScopedSettingCIM_ManagedElementAntecedent
CIM_MetricDefForMECIM_ManagedElementAntecedent
CIM_MetricForMECIM_ManagedElementAntecedent
CIM_RelatedElementCausingErrorCIM_ManagedElementDependent
CIM_RelatedElementCausingErrorCIM_ManagedElementAntecedent
CIM_SparedCIM_ManagedElementAntecedent
CIM_SparedCIM_ManagedElementDependent
CIM_ConcreteDependencyCIM_ManagedElementAntecedent
CIM_ConcreteDependencyCIM_ManagedElementDependent
CIM_ElementAsUserCIM_ManagedElementAntecedent
CIM_RecordAppliesToElementCIM_ManagedElementDependent
CIM_AuthenticationTargetCIM_ManagedElementDependent
CIM_AuthorizationSubjectCIM_ManagedElementDependent
CIM_AuthorizationTargetCIM_ManagedElementDependent
CIM_ElementSoftwareIdentityCIM_ManagedElementDependent
CIM_IsSpareCIM_ManagedElementAntecedent
CIM_ProvidesServiceToElementCIM_ManagedElementDependent
CIM_ElementCapabilitiesCIM_ManagedElementManagedElement
CIM_IdentityContextCIM_ManagedElementElementProvidingContext
CIM_LogicalIdentityCIM_ManagedElementSystemElement
CIM_LogicalIdentityCIM_ManagedElementSameElement
CIM_ConcreteIdentityCIM_ManagedElementSystemElement
CIM_ConcreteIdentityCIM_ManagedElementSameElement
CIM_SWRManageableAspectCIM_ManagedElementSystemElement
CIM_MemberOfCollectionCIM_ManagedElementMember
CIM_MemberPrincipalCIM_ManagedElementMember
CIM_ElementInPolicyRoleCollectionCIM_ManagedElementMember
CIM_OwningCollectionElementCIM_ManagedElementOwningElement
CIM_ParametersForMethodCIM_ManagedElementTheMethod
CIM_ParameterValueSourcesCIM_ManagedElementValueSource
CIM_PolicySetAppliesToElementCIM_ManagedElementManagedElement
CIM_AuthorizationRuleAppliesToTargetCIM_ManagedElementManagedElement
CIM_RoleLimitedToTargetCIM_ManagedElementTargetElement
CIM_StatisticsCIM_ManagedElementElement
CIM_SynchronizedCIM_ManagedElementSystemElement
CIM_SynchronizedCIM_ManagedElementSyncedElement
CIM_StorageSynchronizedCIM_ManagedElementSystemElement
CIM_StorageSynchronizedCIM_ManagedElementSyncedElement
CIM_AssignedIdentityCIM_ManagedElementManagedElement
CIM_AuthorizedSubjectCIM_ManagedElementPrivilegedElement
CIM_AuthorizedTargetCIM_ManagedElementTargetElement
CIM_ElementConformsToProfileCIM_ManagedElementManagedElement
CIM_ElementLocationCIM_ManagedElementElement
CIM_ElementProfileCIM_ManagedElementManagedElement
CIM_ElementSecuritySensitivityCIM_ManagedElementManagedElement
CIM_ElementSettingDataCIM_ManagedElementManagedElement
CIM_ElementStatisticalDataCIM_ManagedElementManagedElement
CIM_OwningJobElementCIM_ManagedElementOwningElement
CIM_AffectedJobElementCIM_ManagedElementAffectedElement
CIM_ServiceAffectsElementCIM_ManagedElementAffectedElement
CIM_ServiceAvailableToElementCIM_ManagedElementUserOfService
CIM_SAPAvailableForElementCIM_ManagedElementManagedElement
CIM_ManagementSAPCIM_ManagedElementManagedElement