Signature

Applies To: System Center Configuration Manager 2007, System Center Configuration Manager 2007 R2, System Center Configuration Manager 2007 R3, System Center Configuration Manager 2007 SP1, System Center Configuration Manager 2007 SP2

Signature represents the cryptographic signature of the Data element, in Configuration Manager.

Type: Parent.

Instances: One.

Attributes

Attribute Description

SMSID

Specifies the ISV proxy agent's, Configuration Manager-assigned, SMSID that signs the request.

Remarks

Only ISV proxies can sign the request on behalf of ISV proxy client registration requests. If the request signature is verified, Configuration Manager assumes that the request is for an ISV proxy client registration. Therefore, you should include the SMSID attribute only when registering ISV proxy clients.

Creating the signature

  1. The signature element is the hexadecimal-encoded signature of the registration XML data tags starting with the <data> open tag and </data> closing tag as it appears in Unicode. Users should sign all text that appears in between the open and close tags for data, including the tags themselves. For example “<abc><Data>myData</Data></abc>” would sign the Unicode data representing “<Data>myData</Data>”.

  2. Implementations should sign the <data></data> region using the private key of the certificate. See CryptAquireCertificatePrivateKey() for more details.

  3. After obtaining the private key, hash the data using CryptCreateHash() using CALG_SHA1 and CryptHashData().

  4. Sign the hash using CryptSignHash().

  5. Hexadecimal-encode the digital signature by using a function similar to ByteToStr() on MSDN (https://go.microsoft.com/fwlink/?LinkId=93711).

See Also

Concepts

Configuration Manager Management Point Message Schema
Configuration Manager Registration Message XML