3.2.3 Initialization
The server MUST expose the web service path "gms.dll" off the root URL.
The server MUST create and expose the service path "/AutoActivate/gms.dll" to enable Auto Account configuration.<5> The "AutoActivate/gms.dll" endpoint MUST
Support HTTP and HTTPS protocols.
Support an authentication scheme.
The Server MUST have a management domain with at least one member.
For every management domain, the server MUST create a certificate as defined in section 3.1.3.
To enable clients to activate their accounts, the server SHOULD create members in management domains. Each new member MUST have an account configuration code and a KeyID is derived by and SHA1 hash of an SHA1 hash of the account configuration code. For computing the SHA1 hash, the account configuration string is treated as a Unicode string. The SHA1 hash is computed by interpreting the string as bytes, in little-endian order, not including the terminating NULL character.
If the server is to support auto account configuration or auto activation, the server SHOULD associate members with their login names.