Skip to content
This repository has been archived by the owner on May 27, 2019. It is now read-only.

Commit

Permalink
Consolidated policy settings.
Browse files Browse the repository at this point in the history
  • Loading branch information
@MichaelGrafnetter
MichaelGrafnetter committed Apr 16, 2017
1 parent faa5784 commit c01d52d
Show file tree
Hide file tree
Showing 6 changed files with 181 additions and 140 deletions.
142 changes: 67 additions & 75 deletions PolicyDefinitions/YubiKey.admx
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,38 +10,70 @@
<category name="YubiKeyPIVManager" displayName="$(string.YubiKeyPIVManager)" />
</categories>
<policies>
<policy name="YubiKeyPIVManager_TouchPolicy" class="User" displayName="$(string.YubiKeyPIVManager_TouchPolicy)" explainText="$(string.YubiKeyPIVManager_TouchPolicy_Help)" presentation="$(presentation.YubiKeyPIVManager_TouchPolicy)" key="Software\Yubico\YubiKey PIV Manager" valueName="touch_policy">
<policy name="YubiKeyPIVManager_TouchPolicy" class="User" displayName="$(string.YubiKeyPIVManager_TouchPolicy)" explainText="$(string.YubiKeyPIVManager_TouchPolicy_Help)" presentation="$(presentation.YubiKeyPIVManager_TouchPolicy)" key="Software\Yubico\YubiKey PIV Manager">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<enabledValue><string>true</string></enabledValue>
<disabledValue><string>false</string></disabledValue>
<elements>
<multiText id="YubiKeyPIVManager_TouchPolicySlots_MultiText" valueName="touch_policy_slots" maxLength="2" maxStrings="4" />
<boolean id="YubiKeyPIVManager_TouchPolicy_CheckBox" valueName="touch_policy">
<trueValue>
<string>true</string>
</trueValue>
<falseValue>
<delete />
</falseValue>
</boolean>
</elements>
</policy>
<policy name="YubiKeyPIVManager_Algorithm" class="User" displayName="$(string.YubiKeyPIVManager_Algorithm)" explainText="$(string.YubiKeyPIVManager_Algorithm_Help)" presentation="$(presentation.YubiKeyPIVManager_Algorithm)" key="Software\Yubico\YubiKey PIV Manager">
<policy name="YubiKeyPIVManager_PinPolicy" class="User" displayName="$(string.YubiKeyPIVManager_PinPolicy)" explainText="$(string.YubiKeyPIVManager_PinPolicy_Help)" presentation="$(presentation.YubiKeyPIVManager_PinPolicy)" key="Software\Yubico\YubiKey PIV Manager">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<elements>
<enum id="YubiKeyPIVManager_Algorithm_DropdownList" valueName="algorithm" required="true">
<item displayName="$(string.YubiKeyPIVManager_Algorithm_RSA1024)">
<multiText id="YubiKeyPIVManager_PinPolicySlots_MultiText" valueName="pin_policy_slots" maxLength="2" maxStrings="4" />
<enum id="YubiKeyPIVManager_PinPolicy_DropdownList" valueName="pin_policy" required="true">
<item displayName="$(string.YubiKeyPIVManager_PinPolicy_Select)">
<value>
<string>RSA1024</string>
<delete />
</value>
</item>
<item displayName="$(string.YubiKeyPIVManager_Algorithm_RSA2048)">
<item displayName="$(string.YubiKeyPIVManager_PinPolicy_Default)">
<value>
<string>RSA2048</string>
<string>default</string>
</value>
</item>
<item displayName="$(string.YubiKeyPIVManager_Algorithm_ECC256)">
<item displayName="$(string.YubiKeyPIVManager_PinPolicy_Never)">
<value>
<string>ECC256</string>
<string>never</string>
</value>
</item>
<item displayName="$(string.YubiKeyPIVManager_Algorithm_ECC384)">
<item displayName="$(string.YubiKeyPIVManager_PinPolicy_Once)">
<value>
<string>ECC384</string>
<string>once</string>
</value>
</item>
<item displayName="$(string.YubiKeyPIVManager_PinPolicy_Always)">
<value>
<string>always</string>
</value>
</item>
</enum>
<boolean id="YubiKeyPIVManager_ComplexPins_CheckBox" valueName="complex_pins">
<trueValue>
<string>true</string>
</trueValue>
<falseValue>
<string>false</string>
</falseValue>
</boolean>
<decimal id="YubiKeyPIVManager_PinExpiration_TextBox" valueName="pin_expiration" required="true" maxValue="1096" />
<boolean id="YubiKeyPIVManager_PinAsKey_CheckBox" valueName="pin_as_key">
<trueValue>
<string>true</string>
</trueValue>
<falseValue>
<string>false</string>
</falseValue>
</boolean>
</elements>
</policy>
<policy name="YubiKeyPIVManager_CardReader" class="User" displayName="$(string.YubiKeyPIVManager_CardReader)" explainText="$(string.YubiKeyPIVManager_CardReader_Help)" presentation="$(presentation.YubiKeyPIVManager_CardReader)" key="Software\Yubico\YubiKey PIV Manager">
Expand All @@ -51,73 +83,47 @@
<text id="YubiKeyPIVManager_CardReader_TextBox" valueName="card_reader" required="true" maxLength="256" />
</elements>
</policy>
<policy name="YubiKeyPIVManager_Template" class="User" displayName="$(string.YubiKeyPIVManager_Template)" explainText="$(string.YubiKeyPIVManager_Template_Help)" presentation="$(presentation.YubiKeyPIVManager_Template)" key="Software\Yubico\YubiKey PIV Manager">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<elements>
<text id="YubiKeyPIVManager_Template_TextBox" valueName="certreq_template" required="true" maxLength="256" />
</elements>
</policy>
<policy name="YubiKeyPIVManager_ComplexPins" class="User" displayName="$(string.YubiKeyPIVManager_ComplexPins)" explainText="$(string.YubiKeyPIVManager_ComplexPins_Help)" key="Software\Yubico\YubiKey PIV Manager" valueName="complex_pins">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<enabledValue><string>true</string></enabledValue>
<disabledValue><string>false</string></disabledValue>
</policy>
<policy name="YubiKeyPIVManager_EnableImport" class="User" displayName="$(string.YubiKeyPIVManager_EnableImport)" explainText="$(string.YubiKeyPIVManager_EnableImport_Help)" key="Software\Yubico\YubiKey PIV Manager" valueName="enable_import">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<enabledValue><string>true</string></enabledValue>
<disabledValue><string>false</string></disabledValue>
</policy>
<policy name="YubiKeyPIVManager_PinAsKey" class="User" displayName="$(string.YubiKeyPIVManager_PinAsKey)" explainText="$(string.YubiKeyPIVManager_PinAsKey_Help)" key="Software\Yubico\YubiKey PIV Manager" valueName="pin_as_key">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<enabledValue><string>true</string></enabledValue>
<disabledValue><string>false</string></disabledValue>
</policy>
<policy name="YubiKeyPIVManager_PinExpiration" class="User" displayName="$(string.YubiKeyPIVManager_PinExpiration)" explainText="$(string.YubiKeyPIVManager_PinExpiration_Help)" presentation="$(presentation.YubiKeyPIVManager_PinExpiration)" key="Software\Yubico\YubiKey PIV Manager">
<policy name="YubiKeyPIVManager_Request" class="User" displayName="$(string.YubiKeyPIVManager_Request)" explainText="$(string.YubiKeyPIVManager_Request_Help)" presentation="$(presentation.YubiKeyPIVManager_Request)" key="Software\Yubico\YubiKey PIV Manager">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<elements>
<decimal id="YubiKeyPIVManager_PinExpiration_TextBox" valueName="pin_expiration" required="true" maxValue="1096" />
</elements>
</policy>
<policy name="YubiKeyPIVManager_PinPolicy" class="User" displayName="$(string.YubiKeyPIVManager_PinPolicy)" explainText="$(string.YubiKeyPIVManager_PinPolicy_Help)" presentation="$(presentation.YubiKeyPIVManager_PinPolicy)" key="Software\Yubico\YubiKey PIV Manager">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<elements>
<enum id="YubiKeyPIVManager_PinPolicy_DropdownList" valueName="pin_policy" required="true">
<item displayName="$(string.YubiKeyPIVManager_PinPolicy_Default)">
<enum id="YubiKeyPIVManager_Algorithm_DropdownList" valueName="algorithm" required="true">
<item displayName="$(string.YubiKeyPIVManager_Algorithm_Select)">
<value>
<string>default</string>
<delete />
</value>
</item>
<item displayName="$(string.YubiKeyPIVManager_PinPolicy_Never)">
<item displayName="$(string.YubiKeyPIVManager_Algorithm_RSA1024)">
<value>
<string>never</string>
<string>RSA1024</string>
</value>
</item>
<item displayName="$(string.YubiKeyPIVManager_PinPolicy_Once)">
<item displayName="$(string.YubiKeyPIVManager_Algorithm_RSA2048)">
<value>
<string>once</string>
<string>RSA2048</string>
</value>
</item>
<item displayName="$(string.YubiKeyPIVManager_PinPolicy_Always)">
<item displayName="$(string.YubiKeyPIVManager_Algorithm_ECC256)">
<value>
<string>always</string>
<string>ECC256</string>
</value>
</item>
<item displayName="$(string.YubiKeyPIVManager_Algorithm_ECC384)">
<value>
<string>ECC384</string>
</value>
</item>
</enum>
<text id="YubiKeyPIVManager_Subject_TextBox" valueName="subject" required="true" maxLength="256" />
<text id="YubiKeyPIVManager_Template_TextBox" valueName="certreq_template" required="false" maxLength="256" />
</elements>
</policy>
<policy name="YubiKeyPIVManager_PinPolicySlots" class="User" displayName="$(string.YubiKeyPIVManager_PinPolicySlots)" explainText="$(string.YubiKeyPIVManager_PinPolicySlots_Help)" presentation="$(presentation.YubiKeyPIVManager_PinPolicySlots)" key="Software\Yubico\YubiKey PIV Manager">
</policy>
<policy name="YubiKeyPIVManager_DisableImport" class="User" displayName="$(string.YubiKeyPIVManager_DisableImport)" explainText="$(string.YubiKeyPIVManager_DisableImport_Help)" key="Software\Yubico\YubiKey PIV Manager" valueName="enable_import">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<elements>
<multiText id="YubiKeyPIVManager_PinPolicySlots_MultiText" valueName="pin_policy_slots" maxLength="2" maxStrings="4" />
</elements>
</policy>
<enabledValue><string>false</string></enabledValue>
<disabledValue><string>true</string></disabledValue>
</policy>
<policy name="YubiKeyPIVManager_ShownOuts" class="User" displayName="$(string.YubiKeyPIVManager_ShownOuts)" explainText="$(string.YubiKeyPIVManager_ShownOuts_Help)" presentation="$(presentation.YubiKeyPIVManager_ShownOuts)" key="Software\Yubico\YubiKey PIV Manager">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
Expand All @@ -132,19 +138,5 @@
<multiText id="YubiKeyPIVManager_ShownSlots_MultiText" valueName="shown_slots" maxLength="2" maxStrings="4" />
</elements>
</policy>
<policy name="YubiKeyPIVManager_Subject" class="User" displayName="$(string.YubiKeyPIVManager_Subject)" explainText="$(string.YubiKeyPIVManager_Subject_Help)" presentation="$(presentation.YubiKeyPIVManager_Subject)" key="Software\Yubico\YubiKey PIV Manager">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<elements>
<text id="YubiKeyPIVManager_Subject_TextBox" valueName="subject" required="true" maxLength="256" />
</elements>
</policy>
<policy name="YubiKeyPIVManager_TouchPolicySlots" class="User" displayName="$(string.YubiKeyPIVManager_TouchPolicySlots)" explainText="$(string.YubiKeyPIVManager_TouchPolicySlots_Help)" presentation="$(presentation.YubiKeyPIVManager_TouchPolicySlots)" key="Software\Yubico\YubiKey PIV Manager">
<parentCategory ref="YubiKeyPIVManager" />
<supportedOn ref="windows:SUPPORTED_WindowsVista" />
<elements>
<multiText id="YubiKeyPIVManager_TouchPolicySlots_MultiText" valueName="touch_policy_slots" maxLength="2" maxStrings="4" />
</elements>
</policy>
</policies>
</policyDefinitions>
Loading

0 comments on commit c01d52d

Please sign in to comment.