home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
ftp2.jacobs.com
/
2015.02.ftp2.jacobs.com.tar
/
ftp2.jacobs.com
/
pub
/
iPass
/
Open Mobile-V2.3.0-11624-V9.000.msi
/
Data1.cab
/
_223AA52D1A9207699679EC424ECDA5A4
< prev
next >
Wrap
Extensible Markup Language
|
2012-10-24
|
28KB
|
626 lines
<?xml version="1.0"?>
<xsl:stylesheet version="1.0"
xmlns:xsl="http://www.w3.org/1999/XSL/Transform"
xmlns:ex="http://www.microsoft.com/networking/WLAN/profile/v1"
xmlns:onex="http://www.microsoft.com/networking/OneX/v1"
xmlns:host= "http://www.microsoft.com/provisioning/EapHostConfig"
xmlns:eapCommon="http://www.microsoft.com/provisioning/EapCommon"
xmlns:baseEap="http://www.microsoft.com/provisioning/BaseEapConnectionPropertiesV1"
xmlns:eapTls="http://www.microsoft.com/provisioning/EapTlsConnectionPropertiesV1"
xmlns:msPeap="http://www.microsoft.com/provisioning/MsPeapConnectionPropertiesV1"
xmlns:msChapV2="http://www.microsoft.com/provisioning/MsChapV2ConnectionPropertiesV1"
xmlns:msChapV3="http://www.microsoft.com/provisioning/MsChapV3ConnectionPropertiesV1"
xmlns:eapttls="http://schemas.securew2.com/eapconfig/eap-ttls/v0"
xmlns:msPeapv2="http://www.microsoft.com/provisioning/MsPeapConnectionPropertiesV2"
xmlns:nw="http://iPassNativeWiFi">
<xsl:output
method = "xml"
version = "nmtoken"
encoding = "string"
omit-xml-declaration = "no"
cdata-section-elements = "qnames"
indent = "yes"
media-type = "string"/>
<!-- Transformations -->
<xsl:template match='ex:name/text()'>
<xsl:value-of select="nw:GetProfilename()"/>
</xsl:template>
<xsl:template match='ex:SSID/ex:name/text()'>
<xsl:value-of select="nw:GetSSID()"/>
</xsl:template>
<xsl:template match='ex:nonBroadcast/text()'>
<xsl:value-of select="nw:GetNonbroadcast()"/>
</xsl:template>
<xsl:template match='ex:connectionMode/text()'>
<xsl:text>manual</xsl:text>
</xsl:template>
<xsl:template match="ex:authEncryption/ex:authentication/text()">
<xsl:apply-templates/>
<xsl:value-of select="nw:GetAuthentication()"/>
</xsl:template>
<xsl:template match="ex:authEncryption/ex:encryption/text()">
<xsl:apply-templates/>
<xsl:value-of select="nw:GetEncryption()"/>
</xsl:template>
<xsl:template match="ex:tempElement">
<xsl:choose>
<xsl:when test="nw:GetLogonMode() = 'preLogon'">
<xsl:element name="PMKCacheMode" namespace="http://www.microsoft.com/networking/WLAN/profile/v1">enabled</xsl:element>
<xsl:element name="PMKCacheTTL" namespace="http://www.microsoft.com/networking/WLAN/profile/v1">720</xsl:element>
<xsl:element name="PMKCacheSize" namespace="http://www.microsoft.com/networking/WLAN/profile/v1">128</xsl:element>
<xsl:element name="preAuthMode" namespace="http://www.microsoft.com/networking/WLAN/profile/v1">enabled</xsl:element>
<xsl:element name="preAuthThrottle" namespace="http://www.microsoft.com/networking/WLAN/profile/v1">3</xsl:element>
</xsl:when>
</xsl:choose>
</xsl:template>
<xsl:template match="onex:OneX/node()">
<xsl:if test="nw:GetOSMajorVersion() > 5 and nw:GetLogonMode() = 'postLogon'">
<xsl:element name="authMode" namespace="http://www.microsoft.com/networking/OneX/v1">
<xsl:value-of select="nw:GetAuthMode()"/>
</xsl:element>
</xsl:if>
<xsl:choose>
<xsl:when test="nw:GetLogonMode() = 'preLogon'">
<xsl:element name="cacheUserData" namespace="http://www.microsoft.com/networking/OneX/v1">true</xsl:element>
<xsl:element name="heldPeriod" namespace="http://www.microsoft.com/networking/OneX/v1">1</xsl:element>
<xsl:element name="authPeriod" namespace="http://www.microsoft.com/networking/OneX/v1">120</xsl:element>
<xsl:element name="startPeriod" namespace="http://www.microsoft.com/networking/OneX/v1">1</xsl:element>
<xsl:element name="maxStart" namespace="http://www.microsoft.com/networking/OneX/v1">3</xsl:element>
<xsl:element name="maxAuthFailures" namespace="http://www.microsoft.com/networking/OneX/v1">3</xsl:element>
<xsl:element name="authMode" namespace="http://www.microsoft.com/networking/OneX/v1">machineOrUser</xsl:element>
<xsl:element name="singleSignOn" namespace="http://www.microsoft.com/networking/OneX/v1">
<xsl:element name="type" namespace="http://www.microsoft.com/networking/OneX/v1">preLogon</xsl:element>
<xsl:element name="maxDelay" namespace="http://www.microsoft.com/networking/OneX/v1">10</xsl:element>
<xsl:element name="allowAdditionalDialogs" namespace="http://www.microsoft.com/networking/OneX/v1">true</xsl:element>
<xsl:element name="maxDelayWithAdditionalDialogs" namespace="http://www.microsoft.com/networking/OneX/v1">30</xsl:element>
<xsl:element name="userBasedVirtualLan" namespace="http://www.microsoft.com/networking/OneX/v1">false</xsl:element>
</xsl:element>
</xsl:when>
</xsl:choose>
<xsl:copy>
<xsl:apply-templates/>
</xsl:copy>
</xsl:template>
<xsl:template match="host:EapHostConfig" >
<xsl:copy>
<xsl:apply-templates/>
<xsl:element name="EapMethod" xmlns="http://www.microsoft.com/provisioning/EapHostConfig">
<xsl:element name="eapCommon:Type">
<xsl:value-of select="nw:GetOuterTunnelEapMethod()"/>
</xsl:element>
<xsl:element name="eapCommon:AuthorId">
<xsl:value-of select="nw:GetAuthorID()"/>
</xsl:element>
</xsl:element>
<xsl:choose>
<xsl:when test="nw:GetUseConfigBlob() = 'true'">
<xsl:call-template name="ConfigBlobTemplate" />
</xsl:when>
<xsl:otherwise>
<xsl:call-template name="XmlConfigTemplate" />
</xsl:otherwise>
</xsl:choose>
</xsl:copy>
</xsl:template>
<xsl:template name="XmlConfigTemplate">
<xsl:element name="Config" xmlns="http://www.microsoft.com/provisioning/EapHostConfig"
xmlns:baseEap="http://www.microsoft.com/provisioning/BaseEapConnectionPropertiesV1"
xmlns:msPeap="http://www.microsoft.com/provisioning/MsPeapConnectionPropertiesV1"
xmlns:msChapV2="http://www.microsoft.com/provisioning/MsChapV2ConnectionPropertiesV1"
xmlns:msChapV3="http://www.microsoft.com/provisioning/MsChapV3ConnectionPropertiesV1"
xmlns:eapTls="http://www.microsoft.com/provisioning/EapTlsConnectionPropertiesV1">
<!-- TLS -->
<xsl:if test="nw:GetOuterTunnelEapMethod() = '13'">
<xsl:choose>
<xsl:when test="nw:GetCertLocation() = 'SmartCard' and nw:GetOSMajorVersion() >= 6 and nw:GetOSMinorVersion() >= 2">
<xsl:call-template name="iEapTlsTemplate" />
</xsl:when>
<xsl:otherwise>
<xsl:call-template name="msEapTlsTemplate" />
</xsl:otherwise>
</xsl:choose>
</xsl:if>
<!-- End of TLS -->
<!-- PEAP-MSCHAPv2 and PEAP-TLS -->
<xsl:if test="nw:GetOuterTunnelEapMethod() = '25' and (nw:GetInnerTunnelEapMethod() = '26' or nw:GetInnerTunnelEapMethod() = '13')">
<xsl:if test="nw:GetAuthMethod() = ''">
<xsl:element name="baseEap:Eap">
<xsl:element name="baseEap:Type">
<xsl:value-of select="nw:GetOuterTunnelEapMethod()"/>
</xsl:element>
<xsl:element name="msPeap:EapType">
<xsl:if test="nw:GetVerifyServerCertificate() = 'true'">
<xsl:element name="msPeap:ServerValidation">
<xsl:element name="msPeap:DisableUserPromptForServerValidation">true</xsl:element>
<xsl:if test="nw:GetServerNames() != ''">
<xsl:element name="msPeap:ServerNames">
<xsl:value-of select="nw:GetServerNames()"/>
</xsl:element>
</xsl:if>
<xsl:call-template name="loop">
<xsl:with-param name="maxcount" select="nw:GetCategoryValuesCount(nw:GetCategory())"/>
<xsl:with-param name="incriment-factor" select="1"/>
<xsl:with-param name="initial-value" select="0"/>
</xsl:call-template>
</xsl:element><!--End of ServerValidation-->
</xsl:if>
<xsl:element name="msPeap:FastReconnect">
<xsl:value-of select="nw:GetFastReconnect()"/>
</xsl:element>
<xsl:element name="msPeap:InnerEapOptional">0</xsl:element>
<xsl:element name="baseEap:Eap">
<xsl:element name="baseEap:Type">
<xsl:value-of select="nw:GetInnerTunnelEapMethod()"/>
</xsl:element>
<!-- Inner TLS-->
<xsl:if test="nw:GetInnerTunnelEapMethod() = '13'">
<xsl:element name="eapTls:EapType">
<xsl:element name="eapTls:CredentialsSource">
<xsl:choose>
<xsl:when test="nw:GetCertLocation() = 'SmartCard'">
<xsl:element name="eapTls:SmartCard"></xsl:element>
</xsl:when>
<xsl:otherwise>
<xsl:element name="eapTls:CertificateStore"></xsl:element>
</xsl:otherwise>
</xsl:choose>
</xsl:element><!--end of CredentialsSource Element-->
<xsl:element name="eapTls:DifferentUsername">false</xsl:element>
</xsl:element><!--end of EapType-->
</xsl:if><!--End of Inner TLS-->
<!-- MSCHAPv2-->
<xsl:if test="nw:GetInnerTunnelEapMethod() = '26'">
<xsl:element name="msChapV2:EapType">
<xsl:element name="msChapV2:UseWinLogonCredentials">
<xsl:value-of select="nw:GetWindowsLogonCreds()"/>
</xsl:element>
</xsl:element>
</xsl:if><!-- End of MSCHAPv2-->
</xsl:element><!--end of baseEap:Eap element-->
<xsl:element name="msPeap:EnableQuarantineChecks">false</xsl:element>
<xsl:element name="msPeap:RequireCryptoBinding">false</xsl:element>
<xsl:element name="msPeap:PeapExtensions">
<xsl:element name="msPeapv2:PerformServerValidation">
<xsl:value-of select="nw:GetVerifyServerCertificate()"/>
</xsl:element>
<xsl:element name="msPeapv2:IdentityPrivacy">
<xsl:element name="msPeapv2:EnableIdentityPrivacy">
<xsl:value-of select="nw:GetIdentityPrivacy()"/>
</xsl:element>
<xsl:element name="msPeapv2:AnonymousUserName">
<xsl:value-of select="nw:GetOuterTunnelIdentity()"/>
</xsl:element>
</xsl:element>
</xsl:element><!-- End of PeapExtensions-->
</xsl:element><!--End of msPeap:EapType-->
</xsl:element><!--end of baseEap:Eap element-->
</xsl:if>
<xsl:if test="nw:GetAuthMethod() = 'EAP'">
<xsl:element name="eapttls:eap-ttls">
<xsl:element name="eapttls:Configuration" >
<xsl:element name="eapttls:Connection">
<xsl:element name="eapttls:UseAlternateOuterIdentity">true</xsl:element>
<xsl:element name="eapttls:UseAnonymousOuterIdentity">false</xsl:element>
<xsl:element name="eapttls:AlternateOuterIdentity">
<xsl:value-of select="nw:GetOuterTunnelIdentity()"/>
</xsl:element>
<xsl:element name="eapttls:UseSessionResumption">true</xsl:element>
</xsl:element>
<xsl:element name="eapttls:ServerValidation">
<xsl:element name="eapttls:VerifyServerCertificate">
<xsl:value-of select="nw:GetVerifyServerCertificate()"/>
</xsl:element>
<xsl:if test="nw:GetServerNames() != ''">
<xsl:element name="eapttls:ServerName">
<xsl:value-of select="nw:GetServerNames()"/>
</xsl:element>
</xsl:if>
<xsl:element name="eapttls:TrustedRootCA">
<xsl:call-template name="loop">
<xsl:with-param name="maxcount" select="nw:GetCategoryValuesCount(nw:GetCategory())"/>
<xsl:with-param name="incriment-factor" select="1"/>
<xsl:with-param name="initial-value" select="0"/>
</xsl:call-template>
</xsl:element>
</xsl:element>
<xsl:element name="eapttls:Authentication">
<xsl:element name="eapttls:AuthenticationMethod">
<xsl:value-of select="nw:GetAuthMethod()"/>
</xsl:element>
<xsl:element name="eapttls:EapConfig">
<xsl:if test="nw:GetAuthMethod() = 'EAP'">
<xsl:element name="eapttls:EapHostConfig">
<xsl:element name="eapttls:EapMethod">
<xsl:element name="eapttls:Type">6</xsl:element>
<xsl:element name="eapttls:VendorId">0</xsl:element>
<xsl:element name="eapttls:VendorType">0</xsl:element>
<xsl:element name="eapttls:AuthorId">
<xsl:value-of select="nw:GetAuthorID()"/>
</xsl:element>
</xsl:element>
<xsl:element name="eapttls:Config">
<xsl:element name="eapttls:Identity">
<xsl:value-of select="nw:GetInnerTunnelIdentity()"/>
</xsl:element>
</xsl:element>
</xsl:element>
</xsl:if>
</xsl:element>
</xsl:element>
<xsl:element name="eapttls:UserAccount">
<xsl:element name="eapttls:PromptUser">true</xsl:element>
<xsl:element name="eapttls:UseUserCredentialsForComputer">false</xsl:element>
</xsl:element>
<xsl:element name="eapttls:Advanced">
<xsl:element name="eapttls:AllowNewConnections">false</xsl:element>
<xsl:element name="eapttls:UseEmptyOuterIdentity">false</xsl:element>
</xsl:element>
</xsl:element>
</xsl:element>
</xsl:if>
</xsl:if>
<!-- PEAP-GTC schema generator -->
<xsl:if test="nw:GetOuterTunnelEapMethod() = '25' and nw:GetInnerTunnelEapMethod() = '6'" >
<iEapPeap xsi:noNamespaceSchemaLocation="iEapPeap.xsd" xmlns="" xmlns:n1="http://www.altova.com/samplexml/other-namespace" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<AllowFastReconnect>
<xsl:value-of select="nw:GetFastReconnect()"/>
</AllowFastReconnect>
<EncryptionLabelVersion>
<xsl:value-of select="nw:GetEncryptionLabelVersion()"/>
</EncryptionLabelVersion>
<xsl:call-template name="OMServerValidationTemplate"/>
<InnerEapMethod>
<xsl:if test="nw:GetInnerTunnelEapMethod() = '6'">
<xsl:call-template name="iEapGtcTemplate" />
</xsl:if>
</InnerEapMethod>
</iEapPeap>
</xsl:if>
<!-- EAP-FAST schema generator -->
<xsl:if test="nw:GetOuterTunnelEapMethod() = '43'">
<xsl:if test="nw:GetInnerTunnelEapMethod() = '26' or nw:GetInnerTunnelEapMethod() = '6' or nw:GetInnerTunnelEapMethod() = '13'" >
<iEapFast xsi:noNamespaceSchemaLocation="iEapFast.xsd" xmlns="" xmlns:n1="http://www.altova.com/samplexml/other-namespace" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<AllowFastReconnect>
<xsl:value-of select="nw:GetFastReconnect()"/>
</AllowFastReconnect>
<xsl:if test="nw:GetIdentityPrivacy() = 'true'">
<xsl:element name="OuterTunnelIdentity">
<xsl:value-of select="nw:GetOuterTunnelIdentity()"/>
</xsl:element>
</xsl:if>
<xsl:choose>
<xsl:when test="nw:GetUsePac() = 'true'">
<UsePac>
<Provisioning>
<xsl:choose>
<xsl:when test="nw:GetPacProvisioningMode() = 'auto'">
<Auto>
<xsl:choose>
<xsl:when test ="nw:GetProvisioningServerAuthType() = 'serverunauthenticated'">
<AllowServerUnauthProvisioning>true</AllowServerUnauthProvisioning>
</xsl:when>
<xsl:otherwise>
<AllowServerUnauthProvisioning>false</AllowServerUnauthProvisioning>
</xsl:otherwise>
</xsl:choose>
</Auto>
</xsl:when>
<xsl:otherwise>
<Manual/>
</xsl:otherwise>
</xsl:choose>
</Provisioning>
</UsePac>
</xsl:when>
<xsl:otherwise>
<DoNotUsePac/>
</xsl:otherwise>
</xsl:choose>
<xsl:call-template name="OMServerValidationTemplate"/>
<InnerEapMethod>
<xsl:element name="EapType">
<xsl:value-of select="nw:GetInnerTunnelEapMethod()"/>
</xsl:element>
<xsl:element name="Config">
<xsl:choose>
<xsl:when test="nw:GetInnerTunnelEapMethod() = '26'">
<xsl:call-template name="iEapMschapv2Template" />
</xsl:when>
<xsl:when test="nw:GetInnerTunnelEapMethod() = '6'">
<xsl:call-template name="iEapGtcTemplate" />
</xsl:when>
<xsl:when test="nw:GetInnerTunnelEapMethod() = '13'">
<xsl:call-template name="iEapTlsTemplate" />
</xsl:when>
</xsl:choose>
</xsl:element>
</InnerEapMethod>
</iEapFast>
</xsl:if>
</xsl:if>
<!--TTLS schema generator-->
<xsl:if test="nw:GetOuterTunnelEapMethod() = '21'">
<iEapTTLS xsi:noNamespaceSchemaLocation="iEapTTLS.xsd" xmlns="" xmlns:n1="http://www.altova.com/samplexml/other-namespace" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<AllowFastReconnect>
<xsl:value-of select="nw:GetFastReconnect()"/>
</AllowFastReconnect>
<ServerValidation>
<xsl:choose>
<xsl:when test="nw:GetVerifyServerCertificate() = 'false'">
<Disabled/>
</xsl:when>
<xsl:otherwise>
<Enabled>
<ServerNames>
<xsl:value-of select="nw:GetServerNames()"/>
</ServerNames>
<TrustedRootCAList>
<xsl:call-template name="OMRootCALoop">
<xsl:with-param name="maxcount" select="nw:GetCategoryValuesCount(nw:GetCategory())"/>
<xsl:with-param name="incriment-factor" select="1"/>
<xsl:with-param name="initial-value" select="0"/>
</xsl:call-template>
</TrustedRootCAList>
</Enabled>
</xsl:otherwise>
</xsl:choose>
</ServerValidation>
<xsl:if test="nw:GetIdentityPrivacy() = 'true'">
<OuterTunnelIdentity>
<xsl:value-of select="nw:GetOuterTunnelIdentity()"/>
</OuterTunnelIdentity>
</xsl:if>
<InnerMethod>
<MethodName>
<xsl:value-of select="nw:GetAuthMethod()"/>
</MethodName>
<Config>
<xsl:if test ="nw:GetAuthMethod() = 'MSCHAPV2'">
<xsl:call-template name="iEapMschapv2Template" />
</xsl:if>
</Config>
</InnerMethod>
</iEapTTLS>
</xsl:if>
</xsl:element>
</xsl:template>
<xsl:template name="ConfigBlobTemplate">
<xsl:element name="ConfigBlob" xmlns="http://www.microsoft.com/provisioning/EapHostConfig">
<xsl:value-of select="nw:GetConfigBlob()"/>
</xsl:element>
</xsl:template>
<xsl:template name="msEapTlsTemplate">
<xsl:element name="baseEap:Eap">
<xsl:element name="baseEap:Type">
<xsl:value-of select="nw:GetOuterTunnelEapMethod()"/>
</xsl:element>
<xsl:element name="eapTls:EapType">
<xsl:element name="eapTls:CredentialsSource">
<xsl:choose>
<xsl:when test="nw:GetCertLocation() = 'SmartCard'">
<xsl:element name="eapTls:SmartCard"></xsl:element>
</xsl:when>
<xsl:otherwise>
<xsl:element name="eapTls:CertificateStore"></xsl:element>
</xsl:otherwise>
</xsl:choose>
</xsl:element>
<!--end of CredentialsSource Element-->
<xsl:if test="nw:GetVerifyServerCertificate() = 'true'">
<xsl:element name="eapTls:ServerValidation">
<xsl:element name="eapTls:DisableUserPromptForServerValidation">true</xsl:element>
<xsl:if test="nw:GetServerNames() != ''">
<xsl:element name="eapTls:ServerNames">
<xsl:value-of select="nw:GetServerNames()"/>
</xsl:element>
</xsl:if>
<!--<xsl:element name="eapTls:TrustedRootCA">-->
<xsl:call-template name="loop">
<xsl:with-param name="maxcount" select="nw:GetCategoryValuesCount(nw:GetCategory())"/>
<xsl:with-param name="incriment-factor" select="1"/>
<xsl:with-param name="initial-value" select="0"/>
</xsl:call-template>
<!--</xsl:element>-->
</xsl:element>
<!--end of ServerValidation Element-->
</xsl:if>
<xsl:element name="eapTls:DifferentUsername">
<xsl:value-of select="nw:GetIdentityPrivacy()"/>
</xsl:element>
<!--end of EapType-->
</xsl:element>
</xsl:element>
</xsl:template>
<xsl:template name="OMServerValidationTemplate">
<xsl:if test="nw:GetAuthorID() = 2526">
<xsl:element name="ServerValidation">
<xsl:choose>
<xsl:when test="nw:GetVerifyServerCertificate() = 'false'">
<Disabled/>
</xsl:when>
<xsl:otherwise>
<Enabled>
<ServerNames>
<xsl:value-of select="nw:GetServerNames()"/>
</ServerNames>
<TrustedRootCAList>
<xsl:call-template name="OMRootCALoop">
<xsl:with-param name="maxcount" select="nw:GetCategoryValuesCount(nw:GetCategory())"/>
<xsl:with-param name="incriment-factor" select="1"/>
<xsl:with-param name="initial-value" select="0"/>
</xsl:call-template>
</TrustedRootCAList>
</Enabled>
</xsl:otherwise>
</xsl:choose>
</xsl:element>
</xsl:if>
</xsl:template>
<xsl:template name="iEapGtcTemplate">
<iEapGtc xsi:noNamespaceSchemaLocation="iEapGtc.xsd" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<AuthorId>
<xsl:value-of select="nw:GetAuthorID()" />
</AuthorId>
<TokenSource>ExternalSource</TokenSource>
</iEapGtc>
</xsl:template>
<xsl:template name="iEapMschapv2Template">
<iEapMschapv2 xsi:noNamespaceSchemaLocation="iEapMschapv2.xsd" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<AuthorId>
<xsl:value-of select="nw:GetAuthorID()" />
</AuthorId>
<UseWinLogon>
<xsl:value-of select="nw:GetWindowsLogonCreds()"/>
</UseWinLogon>
</iEapMschapv2>
</xsl:template>
<xsl:template name="iEapTlsTemplate">
<iEapTls xsi:noNamespaceSchemaLocation="iEapTls.xsd" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<!--MachineIdentity, this element will be written only if auth mode is machine or machineOrUser-->
<xsl:if test="nw:GetAuthMode() = 'machine' or nw:GetAuthMode() = 'machineOrUser'">
<xsl:element name ="MachineIdentity">
<xsl:value-of select="nw:GetInnerTunnelIdentity()"/>
</xsl:element>
</xsl:if>
<!--Certificate location-->
<xsl:element name="CredentialsSource">
<xsl:choose>
<xsl:when test="nw:GetCertLocation() = 'SmartCard'">SmartCard</xsl:when>
<xsl:otherwise>CertificateStore</xsl:otherwise>
</xsl:choose>
</xsl:element>
<!--Server validation-->
<xsl:call-template name="OMServerValidationTemplate"/>
</iEapTls>
</xsl:template>
<xsl:template name="loop">
<xsl:param name="maxcount"/>
<xsl:param name="incriment-factor"/>
<xsl:param name="initial-value"/>
<xsl:if test="$initial-value< $maxcount">
<xsl:if test="nw:GetOuterTunnelEapMethod() = '13'">
<xsl:element name="eapTls:TrustedRootCA">
<xsl:value-of select="nw:GetCategoryNextValue()"/>
</xsl:element>
</xsl:if>
<xsl:if test="nw:GetOuterTunnelEapMethod() = '25'">
<xsl:if test="nw:GetAuthMethod() = ''">
<xsl:element name="msPeap:TrustedRootCA">
<xsl:value-of select="nw:GetCategoryNextValue()"/>
</xsl:element>
</xsl:if>
<xsl:if test="nw:GetAuthMethod() = 'EAP'">
<xsl:element name="eapttls:Certificate">
<xsl:value-of select="nw:GetCategoryNextValue()"/>
</xsl:element>
</xsl:if>
</xsl:if>
<xsl:if test="nw:GetOuterTunnelEapMethod() = '21'">
<xsl:element name="eapttls:Certificate">
<xsl:value-of select="nw:GetCategoryNextValue()"/>
</xsl:element>
</xsl:if>
<xsl:if test="nw:GetOuterTunnelEapMethod() = '25' and nw:GetAuthorID()=2526">
<xsl:element name="TrustedRootCA">
<xsl:value-of select="nw:GetCategoryNextValue()"/>
</xsl:element>
</xsl:if>
<xsl:call-template name="loop">
<xsl:with-param name="maxcount" select="$maxcount"/>
<xsl:with-param name="initial-value" select="$initial-value+$incriment-factor"/>
<xsl:with-param name="incriment-factor" select="$incriment-factor"/>
</xsl:call-template>
</xsl:if>
</xsl:template>
<xsl:template name="OMRootCALoop">
<xsl:param name="maxcount"/>
<xsl:param name="incriment-factor"/>
<xsl:param name="initial-value"/>
<xsl:if test="$initial-value< $maxcount">
<xsl:if test="nw:GetAuthorID()=2526">
<xsl:element name="TrustedRootCA">
<xsl:value-of select="nw:GetCategoryNextValue()"/>
</xsl:element>
</xsl:if>
<xsl:call-template name="OMRootCALoop">
<xsl:with-param name="maxcount" select="$maxcount"/>
<xsl:with-param name="initial-value" select="$initial-value+$incriment-factor"/>
<xsl:with-param name="incriment-factor" select="$incriment-factor"/>
</xsl:call-template>
</xsl:if>
</xsl:template>
<!-- Identity copy-->
<xsl:template match='@*|node()' >
<xsl:copy>
<xsl:apply-templates select="@*|node()"/>
</xsl:copy>
</xsl:template>
</xsl:stylesheet>