Data Structures |
| struct | PGENERIC_MAPPING |
| struct | PACL |
| struct | PLUID_AND_ATTRIBUTES |
| struct | PPRIVILEGE_SET |
| struct | PSECURITY_QUALITY_OF_SERVICE |
| struct | PSE_IMPERSONATION_STATE |
| struct | PINITIAL_PRIVILEGE_SET |
| struct | PSECURITY_SUBJECT_CONTEXT |
| struct | PACCESS_STATE |
| struct | PSE_ADT_OBJECT_TYPE |
| struct | PSE_ADT_PARAMETER_ARRAY_ENTRY |
| struct | PSE_ADT_ACCESS_REASON |
| struct | PSE_ADT_PARAMETER_ARRAY |
| struct | PISID |
| struct | PSID_AND_ATTRIBUTES |
| struct | PSID_AND_ATTRIBUTES_HASH |
| struct | PACE_HEADER |
| struct | PACCESS_ALLOWED_ACE |
| struct | PACCESS_DENIED_ACE |
| struct | PSYSTEM_AUDIT_ACE |
| struct | PSYSTEM_ALARM_ACE |
| struct | PSYSTEM_MANDATORY_LABEL_ACE |
| struct | PISECURITY_DESCRIPTOR_RELATIVE |
| struct | PISECURITY_DESCRIPTOR |
| struct | POBJECT_TYPE_LIST |
| struct | PACCESS_REASONS |
| struct | PSE_SECURITY_DESCRIPTOR |
| struct | PSE_ACCESS_REQUEST |
| struct | PSE_ACCESS_REPLY |
| struct | PSE_AUDIT_INFO |
| struct | PTOKEN_USER |
| struct | LPTOKEN_GROUPS |
| struct | LPTOKEN_PRIVILEGES |
| struct | PTOKEN_OWNER |
| struct | PTOKEN_PRIMARY_GROUP |
| struct | PTOKEN_DEFAULT_DACL |
| struct | PTOKEN_GROUPS_AND_PRIVILEGES |
| struct | PTOKEN_LINKED_TOKEN |
| struct | PTOKEN_ELEVATION |
| struct | PTOKEN_MANDATORY_LABEL |
| struct | PTOKEN_MANDATORY_POLICY |
| struct | PTOKEN_ACCESS_INFORMATION |
| struct | PTOKEN_AUDIT_POLICY |
| struct | PTOKEN_SOURCE |
| struct | PTOKEN_STATISTICS |
| struct | PTOKEN_CONTROL |
| struct | PTOKEN_ORIGIN |
| struct | PSE_EXPORTS |
| struct | PSECURITY_CLIENT_CONTEXT |
Defines |
| #define | DELETE 0x00010000L |
| #define | READ_CONTROL 0x00020000L |
| #define | WRITE_DAC 0x00040000L |
| #define | WRITE_OWNER 0x00080000L |
| #define | SYNCHRONIZE 0x00100000L |
| #define | STANDARD_RIGHTS_REQUIRED 0x000F0000L |
| #define | STANDARD_RIGHTS_READ READ_CONTROL |
| #define | STANDARD_RIGHTS_WRITE READ_CONTROL |
| #define | STANDARD_RIGHTS_EXECUTE READ_CONTROL |
| #define | STANDARD_RIGHTS_ALL 0x001F0000L |
| #define | SPECIFIC_RIGHTS_ALL 0x0000FFFFL |
| #define | ACCESS_SYSTEM_SECURITY 0x01000000L |
| #define | MAXIMUM_ALLOWED 0x02000000L |
| #define | GENERIC_READ 0x80000000L |
| #define | GENERIC_WRITE 0x40000000L |
| #define | GENERIC_EXECUTE 0x20000000L |
| #define | GENERIC_ALL 0x10000000L |
| #define | ACL_REVISION 2 |
| #define | ACL_REVISION_DS 4 |
| #define | ACL_REVISION1 1 |
| #define | ACL_REVISION2 2 |
| #define | ACL_REVISION3 3 |
| #define | ACL_REVISION4 4 |
| #define | MIN_ACL_REVISION ACL_REVISION2 |
| #define | MAX_ACL_REVISION ACL_REVISION4 |
| #define | SECURITY_DESCRIPTOR_REVISION (1) |
| #define | SECURITY_DESCRIPTOR_REVISION1 (1) |
| #define | SE_PRIVILEGE_ENABLED_BY_DEFAULT (0x00000001L) |
| #define | SE_PRIVILEGE_ENABLED (0x00000002L) |
| #define | SE_PRIVILEGE_REMOVED (0X00000004L) |
| #define | SE_PRIVILEGE_USED_FOR_ACCESS (0x80000000L) |
| #define | SE_PRIVILEGE_VALID_ATTRIBUTES |
| #define | PRIVILEGE_SET_ALL_NECESSARY (1) |
| #define | SECURITY_MAX_IMPERSONATION_LEVEL SecurityDelegation |
| #define | SECURITY_MIN_IMPERSONATION_LEVEL SecurityAnonymous |
| #define | DEFAULT_IMPERSONATION_LEVEL SecurityImpersonation |
| #define | VALID_IMPERSONATION_LEVEL(Level) (((Level) >= SECURITY_MIN_IMPERSONATION_LEVEL) && ((Level) <= SECURITY_MAX_IMPERSONATION_LEVEL)) |
| #define | SECURITY_DYNAMIC_TRACKING (TRUE) |
| #define | SECURITY_STATIC_TRACKING (FALSE) |
| #define | OWNER_SECURITY_INFORMATION (0x00000001L) |
| #define | GROUP_SECURITY_INFORMATION (0x00000002L) |
| #define | DACL_SECURITY_INFORMATION (0x00000004L) |
| #define | SACL_SECURITY_INFORMATION (0x00000008L) |
| #define | LABEL_SECURITY_INFORMATION (0x00000010L) |
| #define | PROTECTED_DACL_SECURITY_INFORMATION (0x80000000L) |
| #define | PROTECTED_SACL_SECURITY_INFORMATION (0x40000000L) |
| #define | UNPROTECTED_DACL_SECURITY_INFORMATION (0x20000000L) |
| #define | UNPROTECTED_SACL_SECURITY_INFORMATION (0x10000000L) |
| #define | INITIAL_PRIVILEGE_COUNT 3 |
| #define | SE_MIN_WELL_KNOWN_PRIVILEGE 2 |
| #define | SE_CREATE_TOKEN_PRIVILEGE 2 |
| #define | SE_ASSIGNPRIMARYTOKEN_PRIVILEGE 3 |
| #define | SE_LOCK_MEMORY_PRIVILEGE 4 |
| #define | SE_INCREASE_QUOTA_PRIVILEGE 5 |
| #define | SE_MACHINE_ACCOUNT_PRIVILEGE 6 |
| #define | SE_TCB_PRIVILEGE 7 |
| #define | SE_SECURITY_PRIVILEGE 8 |
| #define | SE_TAKE_OWNERSHIP_PRIVILEGE 9 |
| #define | SE_LOAD_DRIVER_PRIVILEGE 10 |
| #define | SE_SYSTEM_PROFILE_PRIVILEGE 11 |
| #define | SE_SYSTEMTIME_PRIVILEGE 12 |
| #define | SE_PROF_SINGLE_PROCESS_PRIVILEGE 13 |
| #define | SE_INC_BASE_PRIORITY_PRIVILEGE 14 |
| #define | SE_CREATE_PAGEFILE_PRIVILEGE 15 |
| #define | SE_CREATE_PERMANENT_PRIVILEGE 16 |
| #define | SE_BACKUP_PRIVILEGE 17 |
| #define | SE_RESTORE_PRIVILEGE 18 |
| #define | SE_SHUTDOWN_PRIVILEGE 19 |
| #define | SE_DEBUG_PRIVILEGE 20 |
| #define | SE_AUDIT_PRIVILEGE 21 |
| #define | SE_SYSTEM_ENVIRONMENT_PRIVILEGE 22 |
| #define | SE_CHANGE_NOTIFY_PRIVILEGE 23 |
| #define | SE_REMOTE_SHUTDOWN_PRIVILEGE 24 |
| #define | SE_UNDOCK_PRIVILEGE 25 |
| #define | SE_SYNC_AGENT_PRIVILEGE 26 |
| #define | SE_ENABLE_DELEGATION_PRIVILEGE 27 |
| #define | SE_MANAGE_VOLUME_PRIVILEGE 28 |
| #define | SE_IMPERSONATE_PRIVILEGE 29 |
| #define | SE_CREATE_GLOBAL_PRIVILEGE 30 |
| #define | SE_TRUSTED_CREDMAN_ACCESS_PRIVILEGE 31 |
| #define | SE_RELABEL_PRIVILEGE 32 |
| #define | SE_INC_WORKING_SET_PRIVILEGE 33 |
| #define | SE_TIME_ZONE_PRIVILEGE 34 |
| #define | SE_CREATE_SYMBOLIC_LINK_PRIVILEGE 35 |
| #define | SE_MAX_WELL_KNOWN_PRIVILEGE SE_CREATE_SYMBOLIC_LINK_PRIVILEGE |
| #define | _NTLSA_AUDIT_ |
| #define | SE_MAX_AUDIT_PARAMETERS 32 |
| #define | SE_MAX_GENERIC_AUDIT_PARAMETERS 28 |
| #define | SE_ADT_OBJECT_ONLY 0x1 |
| #define | SE_ADT_PARAMETERS_SELF_RELATIVE 0x00000001 |
| #define | SE_ADT_PARAMETERS_SEND_TO_LSA 0x00000002 |
| #define | SE_ADT_PARAMETER_EXTENSIBLE_AUDIT 0x00000004 |
| #define | SE_ADT_PARAMETER_GENERIC_AUDIT 0x00000008 |
| #define | SE_ADT_PARAMETER_WRITE_SYNCHRONOUS 0x00000010 |
| #define | LSAP_SE_ADT_PARAMETER_ARRAY_TRUE_SIZE(Parameters) |
| #define | SE_UNSOLICITED_INPUT_PRIVILEGE 6 |
| #define | SID_IDENTIFIER_AUTHORITY_DEFINED |
| #define | SID_DEFINED |
| #define | SID_REVISION 1 |
| #define | SID_MAX_SUB_AUTHORITIES 15 |
| #define | SID_RECOMMENDED_SUB_AUTHORITIES 1 |
| #define | SECURITY_MAX_SID_SIZE (sizeof(SID) - sizeof(ULONG) + (SID_MAX_SUB_AUTHORITIES * sizeof(ULONG))) |
| #define | SID_HASH_SIZE 32 |
| #define | SECURITY_NULL_SID_AUTHORITY {0,0,0,0,0,0} |
| #define | SECURITY_WORLD_SID_AUTHORITY {0,0,0,0,0,1} |
| #define | SECURITY_LOCAL_SID_AUTHORITY {0,0,0,0,0,2} |
| #define | SECURITY_CREATOR_SID_AUTHORITY {0,0,0,0,0,3} |
| #define | SECURITY_NON_UNIQUE_AUTHORITY {0,0,0,0,0,4} |
| #define | SECURITY_RESOURCE_MANAGER_AUTHORITY {0,0,0,0,0,9} |
| #define | SECURITY_NULL_RID (0x00000000L) |
| #define | SECURITY_WORLD_RID (0x00000000L) |
| #define | SECURITY_LOCAL_RID (0x00000000L) |
| #define | SECURITY_LOCAL_LOGON_RID (0x00000001L) |
| #define | SECURITY_CREATOR_OWNER_RID (0x00000000L) |
| #define | SECURITY_CREATOR_GROUP_RID (0x00000001L) |
| #define | SECURITY_CREATOR_OWNER_SERVER_RID (0x00000002L) |
| #define | SECURITY_CREATOR_GROUP_SERVER_RID (0x00000003L) |
| #define | SECURITY_CREATOR_OWNER_RIGHTS_RID (0x00000004L) |
| #define | SECURITY_NT_AUTHORITY {0,0,0,0,0,5} |
| #define | SECURITY_DIALUP_RID (0x00000001L) |
| #define | SECURITY_NETWORK_RID (0x00000002L) |
| #define | SECURITY_BATCH_RID (0x00000003L) |
| #define | SECURITY_INTERACTIVE_RID (0x00000004L) |
| #define | SECURITY_LOGON_IDS_RID (0x00000005L) |
| #define | SECURITY_LOGON_IDS_RID_COUNT (3L) |
| #define | SECURITY_SERVICE_RID (0x00000006L) |
| #define | SECURITY_ANONYMOUS_LOGON_RID (0x00000007L) |
| #define | SECURITY_PROXY_RID (0x00000008L) |
| #define | SECURITY_ENTERPRISE_CONTROLLERS_RID (0x00000009L) |
| #define | SECURITY_SERVER_LOGON_RID SECURITY_ENTERPRISE_CONTROLLERS_RID |
| #define | SECURITY_PRINCIPAL_SELF_RID (0x0000000AL) |
| #define | SECURITY_AUTHENTICATED_USER_RID (0x0000000BL) |
| #define | SECURITY_RESTRICTED_CODE_RID (0x0000000CL) |
| #define | SECURITY_TERMINAL_SERVER_RID (0x0000000DL) |
| #define | SECURITY_REMOTE_LOGON_RID (0x0000000EL) |
| #define | SECURITY_THIS_ORGANIZATION_RID (0x0000000FL) |
| #define | SECURITY_IUSER_RID (0x00000011L) |
| #define | SECURITY_LOCAL_SYSTEM_RID (0x00000012L) |
| #define | SECURITY_LOCAL_SERVICE_RID (0x00000013L) |
| #define | SECURITY_NETWORK_SERVICE_RID (0x00000014L) |
| #define | SECURITY_NT_NON_UNIQUE (0x00000015L) |
| #define | SECURITY_NT_NON_UNIQUE_SUB_AUTH_COUNT (3L) |
| #define | SECURITY_ENTERPRISE_READONLY_CONTROLLERS_RID (0x00000016L) |
| #define | SECURITY_BUILTIN_DOMAIN_RID (0x00000020L) |
| #define | SECURITY_WRITE_RESTRICTED_CODE_RID (0x00000021L) |
| #define | SECURITY_PACKAGE_BASE_RID (0x00000040L) |
| #define | SECURITY_PACKAGE_RID_COUNT (2L) |
| #define | SECURITY_PACKAGE_NTLM_RID (0x0000000AL) |
| #define | SECURITY_PACKAGE_SCHANNEL_RID (0x0000000EL) |
| #define | SECURITY_PACKAGE_DIGEST_RID (0x00000015L) |
| #define | SECURITY_CRED_TYPE_BASE_RID (0x00000041L) |
| #define | SECURITY_CRED_TYPE_RID_COUNT (2L) |
| #define | SECURITY_CRED_TYPE_THIS_ORG_CERT_RID (0x00000001L) |
| #define | SECURITY_MIN_BASE_RID (0x00000050L) |
| #define | SECURITY_SERVICE_ID_BASE_RID (0x00000050L) |
| #define | SECURITY_SERVICE_ID_RID_COUNT (6L) |
| #define | SECURITY_RESERVED_ID_BASE_RID (0x00000051L) |
| #define | SECURITY_APPPOOL_ID_BASE_RID (0x00000052L) |
| #define | SECURITY_APPPOOL_ID_RID_COUNT (6L) |
| #define | SECURITY_VIRTUALSERVER_ID_BASE_RID (0x00000053L) |
| #define | SECURITY_VIRTUALSERVER_ID_RID_COUNT (6L) |
| #define | SECURITY_USERMODEDRIVERHOST_ID_BASE_RID (0x00000054L) |
| #define | SECURITY_USERMODEDRIVERHOST_ID_RID_COUNT (6L) |
| #define | SECURITY_CLOUD_INFRASTRUCTURE_SERVICES_ID_BASE_RID (0x00000055L) |
| #define | SECURITY_CLOUD_INFRASTRUCTURE_SERVICES_ID_RID_COUNT (6L) |
| #define | SECURITY_WMIHOST_ID_BASE_RID (0x00000056L) |
| #define | SECURITY_WMIHOST_ID_RID_COUNT (6L) |
| #define | SECURITY_TASK_ID_BASE_RID (0x00000057L) |
| #define | SECURITY_NFS_ID_BASE_RID (0x00000058L) |
| #define | SECURITY_COM_ID_BASE_RID (0x00000059L) |
| #define | SECURITY_VIRTUALACCOUNT_ID_RID_COUNT (6L) |
| #define | SECURITY_MAX_BASE_RID (0x0000006FL) |
| #define | SECURITY_MAX_ALWAYS_FILTERED (0x000003E7L) |
| #define | SECURITY_MIN_NEVER_FILTERED (0x000003E8L) |
| #define | SECURITY_OTHER_ORGANIZATION_RID (0x000003E8L) |
| #define | SECURITY_WINDOWSMOBILE_ID_BASE_RID (0x00000070L) |
| #define | DOMAIN_GROUP_RID_ENTERPRISE_READONLY_DOMAIN_CONTROLLERS (0x000001F2L) |
| #define | FOREST_USER_RID_MAX (0x000001F3L) |
| #define | DOMAIN_USER_RID_ADMIN (0x000001F4L) |
| #define | DOMAIN_USER_RID_GUEST (0x000001F5L) |
| #define | DOMAIN_USER_RID_KRBTGT (0x000001F6L) |
| #define | DOMAIN_USER_RID_MAX (0x000003E7L) |
| #define | DOMAIN_GROUP_RID_ADMINS (0x00000200L) |
| #define | DOMAIN_GROUP_RID_USERS (0x00000201L) |
| #define | DOMAIN_GROUP_RID_GUESTS (0x00000202L) |
| #define | DOMAIN_GROUP_RID_COMPUTERS (0x00000203L) |
| #define | DOMAIN_GROUP_RID_CONTROLLERS (0x00000204L) |
| #define | DOMAIN_GROUP_RID_CERT_ADMINS (0x00000205L) |
| #define | DOMAIN_GROUP_RID_SCHEMA_ADMINS (0x00000206L) |
| #define | DOMAIN_GROUP_RID_ENTERPRISE_ADMINS (0x00000207L) |
| #define | DOMAIN_GROUP_RID_POLICY_ADMINS (0x00000208L) |
| #define | DOMAIN_GROUP_RID_READONLY_CONTROLLERS (0x00000209L) |
| #define | DOMAIN_ALIAS_RID_ADMINS (0x00000220L) |
| #define | DOMAIN_ALIAS_RID_USERS (0x00000221L) |
| #define | DOMAIN_ALIAS_RID_GUESTS (0x00000222L) |
| #define | DOMAIN_ALIAS_RID_POWER_USERS (0x00000223L) |
| #define | DOMAIN_ALIAS_RID_ACCOUNT_OPS (0x00000224L) |
| #define | DOMAIN_ALIAS_RID_SYSTEM_OPS (0x00000225L) |
| #define | DOMAIN_ALIAS_RID_PRINT_OPS (0x00000226L) |
| #define | DOMAIN_ALIAS_RID_BACKUP_OPS (0x00000227L) |
| #define | DOMAIN_ALIAS_RID_REPLICATOR (0x00000228L) |
| #define | DOMAIN_ALIAS_RID_RAS_SERVERS (0x00000229L) |
| #define | DOMAIN_ALIAS_RID_PREW2KCOMPACCESS (0x0000022AL) |
| #define | DOMAIN_ALIAS_RID_REMOTE_DESKTOP_USERS (0x0000022BL) |
| #define | DOMAIN_ALIAS_RID_NETWORK_CONFIGURATION_OPS (0x0000022CL) |
| #define | DOMAIN_ALIAS_RID_INCOMING_FOREST_TRUST_BUILDERS (0x0000022DL) |
| #define | DOMAIN_ALIAS_RID_MONITORING_USERS (0x0000022EL) |
| #define | DOMAIN_ALIAS_RID_LOGGING_USERS (0x0000022FL) |
| #define | DOMAIN_ALIAS_RID_AUTHORIZATIONACCESS (0x00000230L) |
| #define | DOMAIN_ALIAS_RID_TS_LICENSE_SERVERS (0x00000231L) |
| #define | DOMAIN_ALIAS_RID_DCOM_USERS (0x00000232L) |
| #define | DOMAIN_ALIAS_RID_IUSERS (0x00000238L) |
| #define | DOMAIN_ALIAS_RID_CRYPTO_OPERATORS (0x00000239L) |
| #define | DOMAIN_ALIAS_RID_CACHEABLE_PRINCIPALS_GROUP (0x0000023BL) |
| #define | DOMAIN_ALIAS_RID_NON_CACHEABLE_PRINCIPALS_GROUP (0x0000023CL) |
| #define | DOMAIN_ALIAS_RID_EVENT_LOG_READERS_GROUP (0x0000023DL) |
| #define | DOMAIN_ALIAS_RID_CERTSVC_DCOM_ACCESS_GROUP (0x0000023EL) |
| #define | SECURITY_MANDATORY_LABEL_AUTHORITY {0,0,0,0,0,16} |
| #define | SECURITY_MANDATORY_UNTRUSTED_RID (0x00000000L) |
| #define | SECURITY_MANDATORY_LOW_RID (0x00001000L) |
| #define | SECURITY_MANDATORY_MEDIUM_RID (0x00002000L) |
| #define | SECURITY_MANDATORY_HIGH_RID (0x00003000L) |
| #define | SECURITY_MANDATORY_SYSTEM_RID (0x00004000L) |
| #define | SECURITY_MANDATORY_PROTECTED_PROCESS_RID (0x00005000L) |
| #define | SECURITY_MANDATORY_MAXIMUM_USER_RID SECURITY_MANDATORY_SYSTEM_RID |
| #define | MANDATORY_LEVEL_TO_MANDATORY_RID(IL) (IL * 0x1000) |
| #define | SYSTEM_LUID {0x3e7, 0x0} |
| #define | ANONYMOUS_LOGON_LUID {0x3e6, 0x0} |
| #define | LOCALSERVICE_LUID {0x3e5, 0x0} |
| #define | NETWORKSERVICE_LUID {0x3e4, 0x0} |
| #define | IUSER_LUID {0x3e3, 0x0} |
| #define | ACCESS_MIN_MS_ACE_TYPE (0x0) |
| #define | ACCESS_ALLOWED_ACE_TYPE (0x0) |
| #define | ACCESS_DENIED_ACE_TYPE (0x1) |
| #define | SYSTEM_AUDIT_ACE_TYPE (0x2) |
| #define | SYSTEM_ALARM_ACE_TYPE (0x3) |
| #define | ACCESS_MAX_MS_V2_ACE_TYPE (0x3) |
| #define | ACCESS_ALLOWED_COMPOUND_ACE_TYPE (0x4) |
| #define | ACCESS_MAX_MS_V3_ACE_TYPE (0x4) |
| #define | ACCESS_MIN_MS_OBJECT_ACE_TYPE (0x5) |
| #define | ACCESS_ALLOWED_OBJECT_ACE_TYPE (0x5) |
| #define | ACCESS_DENIED_OBJECT_ACE_TYPE (0x6) |
| #define | SYSTEM_AUDIT_OBJECT_ACE_TYPE (0x7) |
| #define | SYSTEM_ALARM_OBJECT_ACE_TYPE (0x8) |
| #define | ACCESS_MAX_MS_OBJECT_ACE_TYPE (0x8) |
| #define | ACCESS_MAX_MS_V4_ACE_TYPE (0x8) |
| #define | ACCESS_MAX_MS_ACE_TYPE (0x8) |
| #define | ACCESS_ALLOWED_CALLBACK_ACE_TYPE (0x9) |
| #define | ACCESS_DENIED_CALLBACK_ACE_TYPE (0xA) |
| #define | ACCESS_ALLOWED_CALLBACK_OBJECT_ACE_TYPE (0xB) |
| #define | ACCESS_DENIED_CALLBACK_OBJECT_ACE_TYPE (0xC) |
| #define | SYSTEM_AUDIT_CALLBACK_ACE_TYPE (0xD) |
| #define | SYSTEM_ALARM_CALLBACK_ACE_TYPE (0xE) |
| #define | SYSTEM_AUDIT_CALLBACK_OBJECT_ACE_TYPE (0xF) |
| #define | SYSTEM_ALARM_CALLBACK_OBJECT_ACE_TYPE (0x10) |
| #define | ACCESS_MAX_MS_V5_ACE_TYPE (0x11) |
| #define | SYSTEM_MANDATORY_LABEL_ACE_TYPE (0x11) |
| #define | OBJECT_INHERIT_ACE (0x1) |
| #define | CONTAINER_INHERIT_ACE (0x2) |
| #define | NO_PROPAGATE_INHERIT_ACE (0x4) |
| #define | INHERIT_ONLY_ACE (0x8) |
| #define | INHERITED_ACE (0x10) |
| #define | VALID_INHERIT_FLAGS (0x1F) |
| #define | SUCCESSFUL_ACCESS_ACE_FLAG (0x40) |
| #define | FAILED_ACCESS_ACE_FLAG (0x80) |
| #define | SYSTEM_MANDATORY_LABEL_NO_WRITE_UP 0x1 |
| #define | SYSTEM_MANDATORY_LABEL_NO_READ_UP 0x2 |
| #define | SYSTEM_MANDATORY_LABEL_NO_EXECUTE_UP 0x4 |
| #define | SYSTEM_MANDATORY_LABEL_VALID_MASK |
| #define | SECURITY_DESCRIPTOR_MIN_LENGTH (sizeof(SECURITY_DESCRIPTOR)) |
| #define | SE_OWNER_DEFAULTED 0x0001 |
| #define | SE_GROUP_DEFAULTED 0x0002 |
| #define | SE_DACL_PRESENT 0x0004 |
| #define | SE_DACL_DEFAULTED 0x0008 |
| #define | SE_SACL_PRESENT 0x0010 |
| #define | SE_SACL_DEFAULTED 0x0020 |
| #define | SE_DACL_UNTRUSTED 0x0040 |
| #define | SE_SERVER_SECURITY 0x0080 |
| #define | SE_DACL_AUTO_INHERIT_REQ 0x0100 |
| #define | SE_SACL_AUTO_INHERIT_REQ 0x0200 |
| #define | SE_DACL_AUTO_INHERITED 0x0400 |
| #define | SE_SACL_AUTO_INHERITED 0x0800 |
| #define | SE_DACL_PROTECTED 0x1000 |
| #define | SE_SACL_PROTECTED 0x2000 |
| #define | SE_RM_CONTROL_VALID 0x4000 |
| #define | SE_SELF_RELATIVE 0x8000 |
| #define | ACCESS_OBJECT_GUID 0 |
| #define | ACCESS_PROPERTY_SET_GUID 1 |
| #define | ACCESS_PROPERTY_GUID 2 |
| #define | ACCESS_MAX_LEVEL 4 |
| #define | AUDIT_ALLOW_NO_PRIVILEGE 0x1 |
| #define | ACCESS_DS_SOURCE_A "DS" |
| #define | ACCESS_DS_SOURCE_W L"DS" |
| #define | ACCESS_DS_OBJECT_TYPE_NAME_A "Directory Service Object" |
| #define | ACCESS_DS_OBJECT_TYPE_NAME_W L"Directory Service Object" |
| #define | ACCESS_REASON_TYPE_MASK 0xffff0000 |
| #define | ACCESS_REASON_DATA_MASK 0x0000ffff |
| #define | SE_SECURITY_DESCRIPTOR_FLAG_NO_OWNER_ACE 0x00000001 |
| #define | SE_SECURITY_DESCRIPTOR_FLAG_NO_LABEL_ACE 0x00000002 |
| #define | SE_SECURITY_DESCRIPTOR_VALID_FLAGS 0x00000003 |
| #define | TOKEN_ASSIGN_PRIMARY (0x0001) |
| #define | TOKEN_DUPLICATE (0x0002) |
| #define | TOKEN_IMPERSONATE (0x0004) |
| #define | TOKEN_QUERY (0x0008) |
| #define | TOKEN_QUERY_SOURCE (0x0010) |
| #define | TOKEN_ADJUST_PRIVILEGES (0x0020) |
| #define | TOKEN_ADJUST_GROUPS (0x0040) |
| #define | TOKEN_ADJUST_DEFAULT (0x0080) |
| #define | TOKEN_ADJUST_SESSIONID (0x0100) |
| #define | TOKEN_ALL_ACCESS_P |
| #define | TOKEN_ALL_ACCESS |
| #define | TOKEN_READ |
| #define | TOKEN_WRITE |
| #define | TOKEN_EXECUTE (STANDARD_RIGHTS_EXECUTE) |
| #define | TOKEN_MANDATORY_POLICY_OFF 0x0 |
| #define | TOKEN_MANDATORY_POLICY_NO_WRITE_UP 0x1 |
| #define | TOKEN_MANDATORY_POLICY_NEW_PROCESS_MIN 0x2 |
| #define | TOKEN_MANDATORY_POLICY_VALID_MASK |
| #define | POLICY_AUDIT_SUBCATEGORY_COUNT (53) |
| #define | TOKEN_SOURCE_LENGTH 8 |
| #define | TOKEN_HAS_TRAVERSE_PRIVILEGE 0x0001 |
| #define | TOKEN_HAS_BACKUP_PRIVILEGE 0x0002 |
| #define | TOKEN_HAS_RESTORE_PRIVILEGE 0x0004 |
| #define | TOKEN_WRITE_RESTRICTED 0x0008 |
| #define | TOKEN_IS_RESTRICTED 0x0010 |
| #define | TOKEN_SESSION_NOT_REFERENCED 0x0020 |
| #define | TOKEN_SANDBOX_INERT 0x0040 |
| #define | TOKEN_HAS_IMPERSONATE_PRIVILEGE 0x0080 |
| #define | SE_BACKUP_PRIVILEGES_CHECKED 0x0100 |
| #define | TOKEN_VIRTUALIZE_ALLOWED 0x0200 |
| #define | TOKEN_VIRTUALIZE_ENABLED 0x0400 |
| #define | TOKEN_IS_FILTERED 0x0800 |
| #define | TOKEN_UIACCESS 0x1000 |
| #define | TOKEN_NOT_LOW 0x2000 |
Typedefs |
| typedef ULONG | SECURITY_INFORMATION |
| typedef ULONG * | PSECURITY_INFORMATION |
| typedef ULONG | ACCESS_MASK |
| typedef ULONG * | PACCESS_MASK |
| typedef PVOID | PACCESS_TOKEN |
| typedef PVOID | PSID |
| typedef LUID_AND_ATTRIBUTES | LUID_AND_ATTRIBUTES_ARRAY [ANYSIZE_ARRAY] |
| typedef LUID_AND_ATTRIBUTES_ARRAY * | PLUID_AND_ATTRIBUTES_ARRAY |
typedef enum
_SECURITY_IMPERSONATION_LEVEL * | PSECURITY_IMPERSONATION_LEVEL |
| typedef BOOLEAN | SECURITY_CONTEXT_TRACKING_MODE |
| typedef BOOLEAN * | PSECURITY_CONTEXT_TRACKING_MODE |
typedef enum
_SECURITY_OPERATION_CODE * | PSECURITY_OPERATION_CODE |
| typedef VOID(NTAPI * | PNTFS_DEREF_EXPORTED_SECURITY_DESCRIPTOR )(_In_ PVOID Vcb, _In_ PSECURITY_DESCRIPTOR SecurityDescriptor) |
typedef enum
_SE_ADT_PARAMETER_TYPE * | PSE_ADT_PARAMETER_TYPE |
| typedef enum _SID_NAME_USE * | PSID_NAME_USE |
| typedef SID_AND_ATTRIBUTES | SID_AND_ATTRIBUTES_ARRAY [ANYSIZE_ARRAY] |
| typedef SID_AND_ATTRIBUTES_ARRAY * | PSID_AND_ATTRIBUTES_ARRAY |
| typedef ULONG_PTR | SID_HASH_ENTRY |
| typedef ULONG_PTR * | PSID_HASH_ENTRY |
| typedef USHORT | SECURITY_DESCRIPTOR_CONTROL |
| typedef USHORT * | PSECURITY_DESCRIPTOR_CONTROL |
| typedef enum _AUDIT_EVENT_TYPE * | PAUDIT_EVENT_TYPE |
| typedef ULONG | ACCESS_REASON |
| typedef enum _SE_AUDIT_OPERATION * | PSE_AUDIT_OPERATION |
| typedef enum _TOKEN_TYPE * | PTOKEN_TYPE |
typedef enum
_TOKEN_INFORMATION_CLASS * | PTOKEN_INFORMATION_CLASS |
| typedef enum _MANDATORY_LEVEL * | PMANDATORY_LEVEL |
| typedef NTSTATUS(NTAPI * | PSE_LOGON_SESSION_TERMINATED_ROUTINE )(IN PLUID LogonId) |
Enumerations |
| enum | SECURITY_IMPERSONATION_LEVEL {
SecurityAnonymous,
SecurityIdentification,
SecurityImpersonation,
SecurityDelegation,
SecurityAnonymous,
SecurityIdentification,
SecurityImpersonation,
SecurityDelegation,
SecurityAnonymous = 0,
SecurityIdentification,
SecurityImpersonation,
SecurityDelegation,
SecurityAnonymous,
SecurityIdentification,
SecurityImpersonation,
SecurityDelegation
} |
| enum | SECURITY_OPERATION_CODE {
SetSecurityDescriptor,
QuerySecurityDescriptor,
DeleteSecurityDescriptor,
AssignSecurityDescriptor,
SetSecurityDescriptor,
QuerySecurityDescriptor,
DeleteSecurityDescriptor,
AssignSecurityDescriptor
} |
| enum | SE_ADT_PARAMETER_TYPE {
SeAdtParmTypeNone = 0,
SeAdtParmTypeString,
SeAdtParmTypeFileSpec,
SeAdtParmTypeUlong,
SeAdtParmTypeSid,
SeAdtParmTypeLogonId,
SeAdtParmTypeNoLogonId,
SeAdtParmTypeAccessMask,
SeAdtParmTypePrivs,
SeAdtParmTypeObjectTypes,
SeAdtParmTypeHexUlong,
SeAdtParmTypePtr,
SeAdtParmTypeTime,
SeAdtParmTypeGuid,
SeAdtParmTypeLuid,
SeAdtParmTypeHexInt64,
SeAdtParmTypeStringList,
SeAdtParmTypeSidList,
SeAdtParmTypeDuration,
SeAdtParmTypeUserAccountControl,
SeAdtParmTypeNoUac,
SeAdtParmTypeMessage,
SeAdtParmTypeDateTime,
SeAdtParmTypeSockAddr,
SeAdtParmTypeSD,
SeAdtParmTypeLogonHours,
SeAdtParmTypeLogonIdNoSid,
SeAdtParmTypeUlongNoConv,
SeAdtParmTypeSockAddrNoPort,
SeAdtParmTypeAccessReason
} |
| enum | SID_NAME_USE {
SidTypeUser = 1,
SidTypeGroup,
SidTypeDomain,
SidTypeAlias,
SidTypeWellKnownGroup,
SidTypeDeletedAccount,
SidTypeInvalid,
SidTypeUnknown,
SidTypeComputer,
SidTypeLabel,
SidTypeUser = 1,
SidTypeGroup,
SidTypeDomain,
SidTypeAlias,
SidTypeWellKnownGroup,
SidTypeDeletedAccount,
SidTypeInvalid,
SidTypeUnknown,
SidTypeComputer,
SidTypeLabel,
SidTypeUser = 1,
SidTypeGroup,
SidTypeDomain,
SidTypeAlias,
SidTypeWellKnownGroup,
SidTypeDeletedAccount,
SidTypeInvalid,
SidTypeUnknown,
SidTypeComputer,
SidTypeLabel,
SidTypeUser = 1,
SidTypeGroup,
SidTypeDomain,
SidTypeAlias,
SidTypeWellKnownGroup,
SidTypeDeletedAccount,
SidTypeInvalid,
SidTypeUnknown,
SidTypeUser = 1,
SidTypeGroup,
SidTypeDomain,
SidTypeAlias,
SidTypeWellKnownGroup,
SidTypeDeletedAccount,
SidTypeInvalid,
SidTypeUnknown,
SidTypeComputer,
SidTypeLabel
} |
| enum | AUDIT_EVENT_TYPE {
AuditEventObjectAccess,
AuditEventDirectoryServiceAccess,
AuditEventObjectAccess,
AuditEventDirectoryServiceAccess,
AuditEventObjectAccess,
AuditEventDirectoryServiceAccess
} |
| enum | ACCESS_REASON_TYPE {
AccessReasonNone = 0x00000000,
AccessReasonAllowedAce = 0x00010000,
AccessReasonDeniedAce = 0x00020000,
AccessReasonAllowedParentAce = 0x00030000,
AccessReasonDeniedParentAce = 0x00040000,
AccessReasonMissingPrivilege = 0x00100000,
AccessReasonFromPrivilege = 0x00200000,
AccessReasonIntegrityLevel = 0x00300000,
AccessReasonOwnership = 0x00400000,
AccessReasonNullDacl = 0x00500000,
AccessReasonEmptyDacl = 0x00600000,
AccessReasonNoSD = 0x00700000,
AccessReasonNoGrant = 0x00800000,
AccessReasonNone = 0x00000000,
AccessReasonAllowedAce = 0x00010000,
AccessReasonDeniedAce = 0x00020000,
AccessReasonAllowedParentAce = 0x00030000,
AccessReasonDeniedParentAce = 0x00040000,
AccessReasonMissingPrivilege = 0x00100000,
AccessReasonFromPrivilege = 0x00200000,
AccessReasonIntegrityLevel = 0x00300000,
AccessReasonOwnership = 0x00400000,
AccessReasonNullDacl = 0x00500000,
AccessReasonEmptyDacl = 0x00600000,
AccessReasonNoSD = 0x00700000,
AccessReasonNoGrant = 0x00800000
} |
| enum | SE_AUDIT_OPERATION {
AuditPrivilegeObject,
AuditPrivilegeService,
AuditAccessCheck,
AuditOpenObject,
AuditOpenObjectWithTransaction,
AuditCloseObject,
AuditDeleteObject,
AuditOpenObjectForDelete,
AuditOpenObjectForDeleteWithTransaction,
AuditCloseNonObject,
AuditOpenNonObject,
AuditObjectReference,
AuditHandleCreation,
AuditPrivilegeObject,
AuditPrivilegeService,
AuditAccessCheck,
AuditOpenObject,
AuditOpenObjectWithTransaction,
AuditCloseObject,
AuditDeleteObject,
AuditOpenObjectForDelete,
AuditOpenObjectForDeleteWithTransaction,
AuditCloseNonObject,
AuditOpenNonObject,
AuditObjectReference,
AuditHandleCreation
} |
| enum | TOKEN_TYPE {
TokenPrimary = 1,
TokenImpersonation,
TokenPrimary = 1,
TokenImpersonation,
TokenPrimary = 1,
TokenImpersonation
} |
| enum | TOKEN_INFORMATION_CLASS {
TokenUser = 1,
TokenGroups,
TokenPrivileges,
TokenOwner,
TokenPrimaryGroup,
TokenDefaultDacl,
TokenSource,
TokenImpersonationLevel,
TokenStatistics,
TokenRestrictedSids,
TokenSessionId,
TokenGroupsAndPrivileges,
TokenSessionReference,
TokenSandBoxInert,
TokenAuditPolicy,
TokenOrigin,
TokenElevationType,
TokenLinkedToken,
TokenElevation,
TokenHasRestrictions,
TokenAccessInformation,
TokenVirtualizationAllowed,
TokenVirtualizationEnabled,
TokenIntegrityLevel,
TokenUIAccess,
TokenMandatoryPolicy,
TokenLogonSid,
MaxTokenInfoClass,
TokenUser = 1,
TokenGroups,
TokenPrivileges,
TokenOwner,
TokenPrimaryGroup,
TokenDefaultDacl,
TokenSource,
TokenType,
TokenImpersonationLevel,
TokenStatistics,
TokenRestrictedSids,
TokenSessionId,
TokenGroupsAndPrivileges,
TokenSessionReference,
TokenSandBoxInert,
TokenAuditPolicy,
TokenOrigin,
TokenElevationType,
TokenLinkedToken,
TokenElevation,
TokenHasRestrictions,
TokenAccessInformation,
TokenVirtualizationAllowed,
TokenVirtualizationEnabled,
TokenIntegrityLevel,
TokenUIAccess,
TokenMandatoryPolicy,
TokenLogonSid,
MaxTokenInfoClass,
TokenUser = 1,
TokenGroups,
TokenPrivileges,
TokenOwner,
TokenPrimaryGroup,
TokenDefaultDacl,
TokenSource,
TokenType,
TokenImpersonationLevel,
TokenStatistics,
TokenRestrictedSids,
TokenSessionId,
TokenGroupsAndPrivileges,
TokenSessionReference,
TokenSandBoxInert,
TokenAuditPolicy,
TokenOrigin,
TokenElevationType,
TokenLinkedToken,
TokenElevation,
TokenHasRestrictions,
TokenAccessInformation,
TokenVirtualizationAllowed,
TokenVirtualizationEnabled,
TokenIntegrityLevel,
TokenUIAccess,
TokenMandatoryPolicy,
TokenLogonSid,
MaxTokenInfoClass
} |
| enum | MANDATORY_LEVEL {
MandatoryLevelUntrusted = 0,
MandatoryLevelLow,
MandatoryLevelMedium,
MandatoryLevelHigh,
MandatoryLevelSystem,
MandatoryLevelSecureProcess,
MandatoryLevelCount,
MandatoryLevelUntrusted = 0,
MandatoryLevelLow,
MandatoryLevelMedium,
MandatoryLevelHigh,
MandatoryLevelSystem,
MandatoryLevelSecureProcess,
MandatoryLevelCount
} |
Functions |
| | $if (_WDMDDK_) typedef PVOID PSECURITY_DESCRIPTOR |
| | $endif (_WDMDDK_) $if(_NTDDK_) typedef enum _WELL_KNOWN_SID_TYPE |
| | $endif (_NTDDK_) $if(_NTIFS_) typedef struct _SID_IDENTIFIER_AUTHORITY |
Variables |
| | WELL_KNOWN_SID_TYPE |
| | SID_IDENTIFIER_AUTHORITY |
| * | PSID_IDENTIFIER_AUTHORITY |
| * | LPSID_IDENTIFIER_AUTHORITY |
1.7.6.1
