Share via

5.1 Security Considerations for Implementers

  • Article

Web Services Management Protocol Extensions for Windows Server 2003 use the WS-Management Security Profiles as described in [DMTF-DSP0226] section 12.

Web Services Management Protocol Extensions for Windows Server 2003 servers are required to authenticate the request using one of the configured security profiles. See sections 2.2.4 and 3.1.4.1.29 for more details on configured profiles.

Web Services Management Protocol Extensions for Windows Server 2003 servers are required to authorize the request using the RootSDDL configuration setting defined in section 2.2.4.

Web Services Management Protocol Extensions for Windows Server 2003 clients are required to implement the following security profiles:<18>

  • wsman:secprofile/http/basic described in [DMTF-DSP0226] section 12.5.

  • wsman:secprofile/https/basic described in [DMTF-DSP0226] section 12.7.

  • wsman:secprofile/https/spnego-kerberos described in [DMTF-DSP0226] section 12.12.

  • wsman:secprofile/http/spnego-kerberos described in [DMTF-DSP0226] section 12.14.

  • wsman:secprofile/http/digest as defined in [DMTF-DSP0226] section 12.6.

  • wsman:secprofile/https/digest as defined in [DMTF-DSP0226] section 12.8.

Web Services Management Protocol Extensions for Windows Server 2003 servers are required to implement the following security profiles:

  • wsman:secprofile/http/basic described in [DMTF-DSP0226] section 12.5.

  • wsman:secprofile/https/basic described in [DMTF-DSP0226] section 12.7.

  • wsman:secprofile/https/spnego-kerberos described in [DMTF-DSP0226] section 12.12.

  • wsman:secprofile/http/spnego-kerberos described in [DMTF-DSP0226] section 12.14.