Class CIM_KerberosTicket
extends CIM_Credential

A CIM_KerberosTicket represents a credential issued by a particular Kerberos Key Distribution Center (KDC) to establish an identity, as the result of a successful authentication process. There are two types of tickets that a KDC may issue - a TicketGranting ticket, which is used to protect and authenticate communications between an entity and the KDC, and a Session ticket, which the KDC issues to two entities to allow them to communicate with each other.

Class Hierarchy

CIM_ManagedElement
   |
   +--CIM_Credential
   |
   +--CIM_KerberosTicket

Direct Known Subclasses

None.

Class Qualifiers

NameData TypeValueScopeFlavors
DescriptionstringA CIM_KerberosTicket represents a credential issued by a particular Kerberos Key Distribution Center (KDC) to establish an identity, as the result of a successful authentication process. There are two types of tickets that a KDC may issue - a TicketGranting ticket, which is used to protect and authenticate communications between an entity and the KDC, and a Session ticket, which the KDC issues to two entities to allow them to communicate with each other.None TRANSLATABLE= true
Versionstring2.8.0TOSUBCLASS= falseTRANSLATABLE= true

Local Class Properties

NameData TypeQualifiers
NameData TypeValueScopeFlavors
AccessesServicestring
DescriptionstringThe name of the service for which this ticket is used.None TRANSLATABLE= true
KeybooleantrueNone OVERRIDABLE= false
MaxLenuint32256None None
Captionstring
DescriptionstringThe Caption property is a short textual description (one- line string) of the object.None TRANSLATABLE= true
MaxLenuint3264None None
Descriptionstring
DescriptionstringThe Description property provides a textual description of the object.None TRANSLATABLE= true
ElementNamestring
DescriptionstringA user-friendly name for the object. This property allows each instance to define a user-friendly name IN ADDITION TO its key properties/identity data, and description information. Note that ManagedSystemElement's Name property is also defined as a user-friendly name. But, it is often subclassed to be a Key. It is not reasonable that the same property can convey both identity and a user friendly name, without inconsistencies. Where Name exists and is not a Key (such as for instances of LogicalDevice), the same information MAY be present in both the Name and ElementName properties.None TRANSLATABLE= true
Expiresdatetime
DescriptionstringThe date and time when the credential expires (and is not appropriate for use for authentication/ authorization). Use a value of all 9s if this information is not applicable. Note that this property does not define how the expiration is set - but that there IS an expiration. The property may be set to either a specific date/time or an interval (calculated from the Issued datetime). For example, for Certificate Authority-signed public key, the expiration is determined by the CA. Another example is a voice mail password that expires 60 days after it is set/issued.None TRANSLATABLE= true
Issueddatetime
DescriptionstringThe date and time when the credential was issued. Use a value of all 0s if this information is not applicable.None TRANSLATABLE= true
RemoteIDstring
DescriptionstringRemoteID is the name by which the user is known at the KDC security service.None TRANSLATABLE= true
KeybooleantrueNone OVERRIDABLE= false
MaxLenuint32256None None
ServiceCreationClassNamestring
DescriptionstringThe scoping Service's CCN.None TRANSLATABLE= true
KeybooleantrueNone OVERRIDABLE= false
MaxLenuint32256None None
PropagatedstringCIM_KerberosKeyDistributionCenter.CreationClassNameNone OVERRIDABLE= false
ServiceNamestring
DescriptionstringThe scoping Service's Name. The Kerberos KDC Realm of CIM_KerberosTicket is used to record the security authority, or Realm, name so that tickets issued by different Realms can be separately managed and enumerated.None TRANSLATABLE= true
KeybooleantrueNone OVERRIDABLE= false
MaxLenuint32256None None
PropagatedstringCIM_KerberosKeyDistributionCenter.NameNone OVERRIDABLE= false
SystemCreationClassNamestring
DescriptionstringThe scoping System's CCN.None TRANSLATABLE= true
KeybooleantrueNone OVERRIDABLE= false
MaxLenuint32256None None
PropagatedstringCIM_KerberosKeyDistributionCenter.SystemCreationClassNameNone OVERRIDABLE= false
SystemNamestring
DescriptionstringThe scoping System's Name.None TRANSLATABLE= true
KeybooleantrueNone OVERRIDABLE= false
MaxLenuint32256None None
PropagatedstringCIM_KerberosKeyDistributionCenter.SystemNameNone OVERRIDABLE= false
TicketTypeuint16
DescriptionstringThe Type of CIM_KerberosTicket is used to indicate whether the ticket in question was issued by the Kerberos Key Distribution Center (KDC) to support ongoing communication between the Users Access and the KDC ("TicketGranting"), or was issued by the KDC to support ongoing communication between two Users Access entities ("Session").None TRANSLATABLE= true
ValueMapstring0, 1None None
ValuesstringSession, TicketGrantingNone TRANSLATABLE= true