3.1.4.2.11 ICertAdminD2::SetAuditFilter (Opnum 41)

The SetAuditFilter method sets the list of events for which the CA server MUST create security audit events, as specified in [CIMC-PP].

 HRESULT SetAuditFilter(
   [in, string, unique] wchar_t const* pwszAuthority,
   [in] DWORD dwFilter
 );

pwszAuthority: See the pwszAuthority definition in section 3.1.4.1.1.

dwFilter: An unsigned integer that specifies the events to be audited by the CA. For possible values, see section 3.1.4.2.10.

The SetAuditFilter method is used to set the audit filter value that is passed in by the client. The audit filter value is used to determine which actions are audited.

The CA server MUST start auditing the methods based on the value of the dwFilter parameter. The list of methods for the value is specified in section 3.1.4.2.10. The CA server SHOULD enforce that the dwFilter parameter contains only bitwise OR combinations of the values specified in section 3.1.4.2.10; otherwise, it SHOULD return a suitable error.

If Config_CA_Interface_Flags contains the value IF_ENABLEADMINASAUDITOR and the caller does not have administrator permissions (as defined in section 3.1.1.7), the server MUST return an error. In Windows, the error is E_ACCESSDENIED (0x80070005).