Setting8021x

---

Object Hierarchy:

Description:

Content:

Constants:

• public const string ALTSUBJECT_MATCHES
• public const string ANONYMOUS_IDENTITY
• public const string AUTH_TIMEOUT
• public const string CA_CERT
• public const string CA_CERT_PASSWORD
• public const string CA_CERT_PASSWORD_FLAGS
• public const string CA_PATH
• public const string CERT_SCHEME_PREFIX_PATH
• public const string CERT_SCHEME_PREFIX_PKCS11
• public const string CLIENT_CERT
• public const string CLIENT_CERT_PASSWORD
• public const string CLIENT_CERT_PASSWORD_FLAGS
• public const string DOMAIN_MATCH
• public const string DOMAIN_SUFFIX_MATCH
• public const string EAP
• public const string IDENTITY
• public const string OPTIONAL
• public const string PAC_FILE
• public const string PASSWORD
• public const string PASSWORD_FLAGS
• public const string PASSWORD_RAW
• public const string PASSWORD_RAW_FLAGS
• public const string PHASE1_AUTH_FLAGS
• public const string PHASE1_FAST_PROVISIONING
• public const string PHASE1_PEAPLABEL
• public const string PHASE1_PEAPVER
• public const string PHASE2_ALTSUBJECT_MATCHES
• public const string PHASE2_AUTH
• public const string PHASE2_AUTHEAP
• public const string PHASE2_CA_CERT
• public const string PHASE2_CA_CERT_PASSWORD
• public const string PHASE2_CA_CERT_PASSWORD_FLAGS
• public const string PHASE2_CA_PATH
• public const string PHASE2_CLIENT_CERT
• public const string PHASE2_CLIENT_CERT_PASSWORD
• public const string PHASE2_CLIENT_CERT_PASSWORD_FLAGS
• public const string PHASE2_DOMAIN_MATCH
• public const string PHASE2_DOMAIN_SUFFIX_MATCH
• public const string PHASE2_PRIVATE_KEY
• public const string PHASE2_PRIVATE_KEY_PASSWORD
• public const string PHASE2_PRIVATE_KEY_PASSWORD_FLAGS
• public const string PHASE2_SUBJECT_MATCH
• public const string PIN
• public const string PIN_FLAGS
• public const string PRIVATE_KEY
• public const string PRIVATE_KEY_PASSWORD
• public const string PRIVATE_KEY_PASSWORD_FLAGS
• public const string SETTING_NAME
• public const string SUBJECT_MATCH
• public const string SYSTEM_CA_CERTS

Properties:

• public string[] altsubject_matches { owned get; set; }
  List of strings to be matched against the altSubjectName of the certificate presented by the authentication server.
• public string anonymous_identity { owned get; set; }
  Anonymous identity string for EAP authentication methods.
• public int auth_timeout { get; set; }
  A timeout for the authentication.
• public Bytes ca_cert { owned get; set; }
  Contains the CA certificate if used by the EAP method specified in the eap property.
• public string ca_cert_password { owned get; set; }
  The password used to access the CA certificate stored in ca_cert property.
• public SettingSecretFlags ca_cert_password_flags { get; set; }
  Flags indicating how to handle the ca_cert_password property.
• public string ca_path { owned get; set; }
  UTF-8 encoded path to a directory containing PEM or DER formatted certificates to be added to the verification chain in addition to the certificate specified in the ca_cert property.
• public Bytes client_cert { owned get; set; }
  Contains the client certificate if used by the EAP method specified in the eap property.
• public string client_cert_password { owned get; set; }
  The password used to access the client certificate stored in client_cert property.
• public SettingSecretFlags client_cert_password_flags { get; set; }
  Flags indicating how to handle the client_cert_password property.
• public string domain_match { owned get; set; }
  Constraint for server domain name.
• public string domain_suffix_match { owned get; set; }
  Constraint for server domain name.
• public string[] eap { owned get; set; }
  The allowed EAP method to be used when authenticating to the network with 802.1x.
• public string identity { owned get; set; }
  Identity string for EAP authentication methods.
• public bool optional { get; set; }
  Whether the 802.1X authentication is optional.
• public string pac_file { owned get; set; }
  UTF-8 encoded file path containing PAC for EAP-FAST.
• public string password { owned get; set; }
  UTF-8 encoded password used for EAP authentication methods.
• public SettingSecretFlags password_flags { get; set; }
  Flags indicating how to handle the password property.
• public Bytes password_raw { owned get; set; }
  Password used for EAP authentication methods, given as a byte array to allow passwords in other encodings than UTF-8 to be used.
• public SettingSecretFlags password_raw_flags { get; set; }
  Flags indicating how to handle the password_raw property.
• public uint phase1_auth_flags { get; set; }
  Specifies authentication flags to use in "phase 1" outer authentication using Setting8021xAuthFlags options.
• public string phase1_fast_provisioning { owned get; set; }
  Enables or disables in-line provisioning of EAP-FAST credentials when FAST is specified as the EAP method in the eap property.
• public string phase1_peaplabel { owned get; set; }
  Forces use of the new PEAP label during key derivation.
• public string phase1_peapver { owned get; set; }
  Forces which PEAP version is used when PEAP is set as the EAP method in the eap property.
• public string[] phase2_altsubject_matches { owned get; set; }
  List of strings to be matched against the altSubjectName of the certificate presented by the authentication server during the inner "phase 2" authentication.
• public string phase2_auth { owned get; set; }
  Specifies the allowed "phase 2" inner authentication method when an EAP method that uses an inner TLS tunnel is specified in the eap property.
• public string phase2_autheap { owned get; set; }
  Specifies the allowed "phase 2" inner EAP-based authentication method when TTLS is specified in the eap property.
• public Bytes phase2_ca_cert { owned get; set; }
  Contains the "phase 2" CA certificate if used by the EAP method specified in the phase2_auth or phase2_autheap properties.
• public string phase2_ca_cert_password { owned get; set; }
  The password used to access the "phase2" CA certificate stored in phase2_ca_cert property.
• public SettingSecretFlags phase2_ca_cert_password_flags { get; set; }
  Flags indicating how to handle the phase2_ca_cert_password property.
• public string phase2_ca_path { owned get; set; }
  UTF-8 encoded path to a directory containing PEM or DER formatted certificates to be added to the verification chain in addition to the certificate specified in the phase2_ca_cert property.
• public Bytes phase2_client_cert { owned get; set; }
  Contains the "phase 2" client certificate if used by the EAP method specified in the phase2_auth or phase2_autheap properties.
• public string phase2_client_cert_password { owned get; set; }
  The password used to access the "phase2" client certificate stored in phase2_client_cert property.
• public SettingSecretFlags phase2_client_cert_password_flags { get; set; }
  Flags indicating how to handle the phase2_client_cert_password property.
• public string phase2_domain_match { owned get; set; }
  Constraint for server domain name.
• public string phase2_domain_suffix_match { owned get; set; }
  Constraint for server domain name.
• public Bytes phase2_private_key { owned get; set; }
  Contains the "phase 2" inner private key when the phase2_auth or phase2_autheap property is set to "tls".
• public string phase2_private_key_password { owned get; set; }
  The password used to decrypt the "phase 2" private key specified in the phase2_private_key property when the private key either uses the path scheme, or is a PKCS#<!-- -->12 format key.
• public SettingSecretFlags phase2_private_key_password_flags { get; set; }
  Flags indicating how to handle the phase2_private_key_password property.
• public string phase2_subject_match { owned get; set; }
  Substring to be matched against the subject of the certificate presented by the authentication server during the inner "phase 2" authentication.
• public string pin { owned get; set; }
  PIN used for EAP authentication methods.
• public SettingSecretFlags pin_flags { get; set; }
  Flags indicating how to handle the pin property.
• public Bytes private_key { owned get; set; }
  Contains the private key when the eap property is set to "tls".
• public string private_key_password { owned get; set; }
  The password used to decrypt the private key specified in the private_key property when the private key either uses the path scheme, or if the private key is a PKCS#<!-- -->12 format key.
• public SettingSecretFlags private_key_password_flags { get; set; }
  Flags indicating how to handle the private_key_password property.
• public string subject_match { owned get; set; }
  Substring to be matched against the subject of the certificate presented by the authentication server.
• public bool system_ca_certs { get; set; }
  When true, overrides the ca_path and phase2_ca_path properties using the system CA directory specified at configure time with the --system-ca-path switch.

Static methods:

• public static Setting8021xCKScheme check_cert_scheme (void* pdata, size_t length) throws Error
  Determines and verifies the blob type.

Creation methods:

• public Setting8021x ()
  Creates a new Setting8021x object with default values.

Methods:

• public bool add_altsubject_match (string altsubject_match)
  Adds an allowed alternate subject name match.
• public bool add_eap_method (string eap)
  Adds an allowed EAP method.
• public bool add_phase2_altsubject_match (string phase2_altsubject_match)
  Adds an allowed alternate subject name match for "phase 2".
• public void clear_altsubject_matches ()
  Clears all altSubjectName matches.
• public void clear_eap_methods ()
  Clears all allowed EAP methods.
• public void clear_phase2_altsubject_matches ()
  Clears all "phase 2" altSubjectName matches.
• public unowned string get_altsubject_match (uint32 i)
  Returns the altSubjectName match at index i.
• public unowned string get_anonymous_identity ()
  Returns the anonymous identifier used by some EAP methods (like TTLS) to authenticate the user in the outer unencrypted "phase 1" authentication.
• public int get_auth_timeout ()
  Returns the value contained in the auth_timeout property.
• public unowned Bytes get_ca_cert_blob ()
  Returns the CA certificate blob if the CA certificate is stored using the nm_setting_802_1x_ck_scheme_blob scheme.
• public unowned string get_ca_cert_password ()
• public SettingSecretFlags get_ca_cert_password_flags ()
• public unowned string get_ca_cert_path ()
  Returns the CA certificate path if the CA certificate is stored using the nm_setting_802_1x_ck_scheme_path scheme.
• public Setting8021xCKScheme get_ca_cert_scheme ()
  Returns the scheme used to store the CA certificate.
• public unowned string get_ca_cert_uri ()
  Returns the CA certificate URI analogously to get_ca_cert_blob and get_ca_cert_path.
• public unowned string get_ca_path ()
  Returns the path of the CA certificate directory if previously set.
• public unowned Bytes get_client_cert_blob ()
  Client certificates are used to identify the connecting client to the network when EAP-TLS is used as either the "phase 1" or "phase 2" 802.1x authentication method.
• public unowned string get_client_cert_password ()
• public SettingSecretFlags get_client_cert_password_flags ()
• public unowned string get_client_cert_path ()
  Client certificates are used to identify the connecting client to the network when EAP-TLS is used as either the "phase 1" or "phase 2" 802.1x authentication method.
• public Setting8021xCKScheme get_client_cert_scheme ()
  Returns the scheme used to store the client certificate.
• public unowned string get_client_cert_uri ()
  Returns the client certificate URI analogously to get_client_cert_blob and get_client_cert_path.
• public unowned string get_domain_match ()
• public unowned string get_domain_suffix_match ()
• public unowned string get_eap_method (uint32 i)
  Returns the name of the allowed EAP method at index i.
• public unowned string get_identity ()
  Returns the identifier used by some EAP methods (like TLS) to authenticate the user.
• public uint32 get_num_altsubject_matches ()
  Returns the number of entries in the altsubject_matches property of this setting.
• public uint32 get_num_eap_methods ()
  Returns the number of eap methods allowed for use when connecting to the network.
• public uint32 get_num_phase2_altsubject_matches ()
  Returns the number of entries in the phase2_altsubject_matches property of this setting.
• public bool get_optional ()
  Returns the value contained in the optional property.
• public unowned string get_pac_file ()
  Returns the file containing PAC credentials used by EAP-FAST method.
• public unowned string get_password ()
• public SettingSecretFlags get_password_flags ()
• public unowned Bytes get_password_raw ()
• public SettingSecretFlags get_password_raw_flags ()
• public Setting8021xAuthFlags get_phase1_auth_flags ()
• public unowned string get_phase1_fast_provisioning ()
• public unowned string get_phase1_peaplabel ()
• public unowned string get_phase1_peapver ()
• public unowned string get_phase2_altsubject_match (uint32 i)
  Returns the "phase 2" altSubjectName match at index i.
• public unowned string get_phase2_auth ()
• public unowned string get_phase2_autheap ()
• public unowned Bytes get_phase2_ca_cert_blob ()
  Returns the "phase 2" CA certificate blob if the CA certificate is stored using the nm_setting_802_1x_ck_scheme_blob scheme.
• public unowned string get_phase2_ca_cert_password ()
• public SettingSecretFlags get_phase2_ca_cert_password_flags ()
• public unowned string get_phase2_ca_cert_path ()
  Returns the "phase 2" CA certificate path if the CA certificate is stored using the nm_setting_802_1x_ck_scheme_path scheme.
• public Setting8021xCKScheme get_phase2_ca_cert_scheme ()
  Returns the scheme used to store the "phase 2" CA certificate.
• public unowned string get_phase2_ca_cert_uri ()
  Returns the "phase 2" CA certificate URI analogously to get_phase2_ca_cert_blob and get_phase2_ca_cert_path.
• public unowned string get_phase2_ca_path ()
  Returns the path of the "phase 2" CA certificate directory if previously set.
• public unowned Bytes get_phase2_client_cert_blob ()
  Client certificates are used to identify the connecting client to the network when EAP-TLS is used as either the "phase 1" or "phase 2" 802.1x authentication method.
• public unowned string get_phase2_client_cert_password ()
• public SettingSecretFlags get_phase2_client_cert_password_flags ()
• public unowned string get_phase2_client_cert_path ()
  Client certificates are used to identify the connecting client to the network when EAP-TLS is used as either the "phase 1" or "phase 2" 802.1x authentication method.
• public Setting8021xCKScheme get_phase2_client_cert_scheme ()
  Returns the scheme used to store the "phase 2" client certificate.
• public unowned string get_phase2_client_cert_uri ()
  Returns the "phase 2" client certificate URI analogously to get_phase2_ca_cert_blob and get_phase2_ca_cert_path.
• public unowned string get_phase2_domain_match ()
• public unowned string get_phase2_domain_suffix_match ()
• public unowned Bytes get_phase2_private_key_blob ()
  Private keys are used to authenticate the connecting client to the network when EAP-TLS is used as either the "phase 1" or "phase 2" 802.1x authentication method.
• public Setting8021xCKFormat get_phase2_private_key_format ()
• public unowned string get_phase2_private_key_password ()
• public SettingSecretFlags get_phase2_private_key_password_flags ()
• public unowned string get_phase2_private_key_path ()
  Private keys are used to authenticate the connecting client to the network when EAP-TLS is used as either the "phase 1" or "phase 2" 802.1x authentication method.
• public Setting8021xCKScheme get_phase2_private_key_scheme ()
  Returns the scheme used to store the "phase 2" private key.
• public unowned string get_phase2_private_key_uri ()
  Returns the "phase 2" private key URI analogously to get_phase2_private_key_blob and get_phase2_private_key_path.
• public unowned string get_phase2_subject_match ()
• public unowned string get_pin ()
• public SettingSecretFlags get_pin_flags ()
• public unowned Bytes get_private_key_blob ()
  Private keys are used to authenticate the connecting client to the network when EAP-TLS is used as either the "phase 1" or "phase 2" 802.1x authentication method.
• public Setting8021xCKFormat get_private_key_format ()
• public unowned string get_private_key_password ()
• public SettingSecretFlags get_private_key_password_flags ()
• public unowned string get_private_key_path ()
  Private keys are used to authenticate the connecting client to the network when EAP-TLS is used as either the "phase 1" or "phase 2" 802.1x authentication method.
• public Setting8021xCKScheme get_private_key_scheme ()
  Returns the scheme used to store the private key.
• public unowned string get_private_key_uri ()
  Returns the private key URI analogously to get_private_key_blob and get_private_key_path.
• public unowned string get_subject_match ()
• public bool get_system_ca_certs ()
  Sets the system_ca_certs property.
• public void remove_altsubject_match (uint32 i)
  Removes the allowed altSubjectName at the specified index.
• public bool remove_altsubject_match_by_value (string altsubject_match)
  Removes the allowed altSubjectName altsubject_match.
• public void remove_eap_method (uint32 i)
  Removes the allowed EAP method at the specified index.
• public bool remove_eap_method_by_value (string eap)
  Removes the allowed EAP method method.
• public void remove_phase2_altsubject_match (uint32 i)
  Removes the allowed "phase 2" altSubjectName at the specified index.
• public bool remove_phase2_altsubject_match_by_value (string phase2_altsubject_match)
  Removes the allowed "phase 2" altSubjectName phase2_altsubject_match .
• public bool set_ca_cert (string value, Setting8021xCKScheme scheme, Setting8021xCKFormat out_format) throws Error
  Reads a certificate from disk and sets the ca_cert property with the raw certificate data if using the nm_setting_802_1x_ck_scheme_blob scheme, or with the path to the certificate file if using the nm_setting_802_1x_ck_scheme_path scheme.
• public bool set_client_cert (string value, Setting8021xCKScheme scheme, Setting8021xCKFormat out_format) throws Error
  Reads a certificate from disk and sets the client_cert property with the raw certificate data if using the nm_setting_802_1x_ck_scheme_blob scheme, or with the path to the certificate file if using the nm_setting_802_1x_ck_scheme_path scheme.
• public bool set_phase2_ca_cert (string value, Setting8021xCKScheme scheme, Setting8021xCKFormat out_format) throws Error
  Reads a certificate from disk and sets the phase2_ca_cert property with the raw certificate data if using the nm_setting_802_1x_ck_scheme_blob scheme, or with the path to the certificate file if using the nm_setting_802_1x_ck_scheme_path scheme.
• public bool set_phase2_client_cert (string value, Setting8021xCKScheme scheme, Setting8021xCKFormat out_format) throws Error
  Reads a certificate from disk and sets the phase2_client_cert property with the raw certificate data if using the nm_setting_802_1x_ck_scheme_blob scheme, or with the path to the certificate file if using the nm_setting_802_1x_ck_scheme_path scheme.
• public bool set_phase2_private_key (string value, string password, Setting8021xCKScheme scheme, Setting8021xCKFormat out_format) throws Error
  Private keys are used to authenticate the connecting client to the network when EAP-TLS is used as either the "phase 1" or "phase 2" 802.1x authentication method.
• public bool set_private_key (string value, string password, Setting8021xCKScheme scheme, Setting8021xCKFormat out_format) throws Error
  Private keys are used to authenticate the connecting client to the network when EAP-TLS is used as either the "phase 1" or "phase 2" 802.1x authentication method.

Inherited Members: