Role data structure example

View an example of a role data structure together with explanations of the contents.

Figure 1 shows the contents of a sample role data structure.

01 00 00 66 2a 4e 65 77 20 64 65 66 61 75 6c 74   ....*New default
20 72 6f 6c 65 20 31 2a ab cd 00 00 44 45 46 41    role 1*....DEFA
55 4c 54 20 23 45 01 0f 17 1e 7c 00 00 02 00 00   ULT #E....|.....
00 00 01 17 00 23 00 00 f0 ff ff ff ff ff ff ff   .....#..........
ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff   ................
ff ff ff ff ff ff ff ff ff ff ff 02 00 02 17 00   ................
03 00 00 8f 99 fe                                 ..........

This structure contains the following data fields:

01 00

The role structure version number.

00 66

The length of the role structure, including the length field itself.

*New default role 1*

The 20-character comment describing this role.

AB CD

The checksum for the role.

Note: The checksum value is not used.

00 00

A reserved field, which must be filled with zeros.

DEFAULT

The Role ID for this role. The role in this example replaces the DEFAULT role.

23 45

The required authentication strength field.

01 0F

The lower time limit. X'01' is the hour, and X'0F' is the minute (decimal 15), so the lower time limit is 1:15 AM, UTC.

17 1E

The upper time limit. X'17' is the hour (decimal 23), and X'1E' is the minute (30), so the upper time limit is 23:30 UTC.

7C

This byte maps the valid days of the week for the role. The first (high order) bit represents Sunday, the second represents Monday, and so on. Hex 7C is binary 01111100, and enables the weekdays Monday through Friday.

00

This byte is a reserved field. It must be zero.

Access-control-point list

The remainder of the role structure contains the access control point list described in Access control point list - data structure example.