sam.h File Reference
This graph shows which files directly or indirectly include this file:
Go to the source code of this file.
Classes | |
| struct | _LSA_SAM_PWD_DATA |
Typedefs | |
| typedef enum _LSA_SAM_NETLOGON_TYPE | LSA_SAM_NETLOGON_TYPE |
| typedef struct _LSA_SAM_PWD_DATA | LSA_SAM_PWD_DATA |
| typedef struct _LSA_SAM_PWD_DATA * | PLSA_SAM_PWD_DATA |
Enumerations | |
| enum | _LSA_SAM_NETLOGON_TYPE { NetLogonAnonymous = 0 , NetLogonLmKey , NetLogonNtKey } |
Functions | |
| NTSTATUS | SamValidateUser (_In_ SECURITY_LOGON_TYPE LogonType, _In_ PUNICODE_STRING LogonUserName, _In_ PUNICODE_STRING LogonDomain, _In_ PLSA_SAM_PWD_DATA LogonPwdData, _In_ PUNICODE_STRING ComputerName, _Out_ PBOOL SpecialAccount, _Out_ PRPC_SID *AccountDomainSidPtr, _Out_ SAMPR_HANDLE *UserHandlePtr, _Out_ PSAMPR_USER_INFO_BUFFER *UserInfoPtr, _Out_ PNTSTATUS SubStatus) |
| Validates a user by checking if it exists in the sam database. Some other checks are done further. | |
Typedef Documentation
◆ LSA_SAM_NETLOGON_TYPE
◆ LSA_SAM_PWD_DATA
| typedef struct _LSA_SAM_PWD_DATA LSA_SAM_PWD_DATA |
◆ PLSA_SAM_PWD_DATA
| typedef struct _LSA_SAM_PWD_DATA * PLSA_SAM_PWD_DATA |
Enumeration Type Documentation
◆ _LSA_SAM_NETLOGON_TYPE
| Enumerator | |
|---|---|
| NetLogonAnonymous | |
| NetLogonLmKey | |
| NetLogonNtKey | |
Function Documentation
◆ SamValidateUser()
| NTSTATUS SamValidateUser | ( | _In_ SECURITY_LOGON_TYPE | LogonType, |
| _In_ PUNICODE_STRING | LogonUserName, | ||
| _In_ PUNICODE_STRING | LogonDomain, | ||
| _In_ PLSA_SAM_PWD_DATA | LogonPwdData, | ||
| _In_ PUNICODE_STRING | ComputerName, | ||
| _Out_ PBOOL | SpecialAccount, | ||
| _Out_ PRPC_SID * | AccountDomainSidPtr, | ||
| _Out_ SAMPR_HANDLE * | UserHandlePtr, | ||
| _Out_ PSAMPR_USER_INFO_BUFFER * | UserInfoPtr, | ||
| _Out_ PNTSTATUS | SubStatus | ||
| ) |
Validates a user by checking if it exists in the sam database. Some other checks are done further.
Definition at line 460 of file sam.c.
471{
475
477
478 *SpecialAccount = FALSE;
479 *UserInfoPtr = NULL;
481
482 /* Check for special accounts */
483 // FIXME: Windows does not do this that way!! (msv1_0 does not contain these hardcoded values)
485 {
486 *SpecialAccount = TRUE;
487
488 /* Get the authority domain SID */
491 {
494 }
495
497 {
499
502
503 *UserInfoPtr = RtlAllocateHeap(RtlGetProcessHeap(),
504 HEAP_ZERO_MEMORY,
508
509 (*UserInfoPtr)->All.UserId = SECURITY_LOCAL_SERVICE_RID;
510 (*UserInfoPtr)->All.PrimaryGroupId = SECURITY_LOCAL_SERVICE_RID;
511 }
513 {
515
518
519 *UserInfoPtr = RtlAllocateHeap(RtlGetProcessHeap(),
520 HEAP_ZERO_MEMORY,
524
525 (*UserInfoPtr)->All.UserId = SECURITY_NETWORK_SERVICE_RID;
526 (*UserInfoPtr)->All.PrimaryGroupId = SECURITY_NETWORK_SERVICE_RID;
527 }
528 else
529 {
531 }
532 }
533 else
534 {
537 LogonPwdData,
538 ComputerName,
539 AccountDomainSidPtr,
540 UserHandlePtr,
541 UserInfoPtr,
542 SubStatus);
544 {
547 }
548 }
549
551}
PVOID NTAPI RtlAllocateHeap(IN PVOID HeapHandle, IN ULONG Flags, IN SIZE_T Size)
Definition: heap.c:590
NTSYSAPI BOOLEAN NTAPI RtlEqualUnicodeString(PUNICODE_STRING String1, PUNICODE_STRING String2, BOOLEAN CaseInSensitive)
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE LogonType
Definition: ntifs.template.h:708
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE _In_ ULONG _In_ ULONG _In_opt_ PTOKEN_GROUPS _In_ PTOKEN_SOURCE _Out_ PVOID _Out_ PULONG _Inout_ PLUID _Out_ PHANDLE _Out_ PQUOTA_LIMITS _Out_ PNTSTATUS SubStatus
Definition: ntifs.template.h:719
static NTSTATUS GetNtAuthorityDomainSid(_In_ PRPC_SID *Sid)
Definition: sam.c:439
static NTSTATUS SamValidateNormalUser(_In_ PUNICODE_STRING UserName, _In_ PLSA_SAM_PWD_DATA PwdData, _In_ PUNICODE_STRING ComputerName, _Out_ PRPC_SID *AccountDomainSidPtr, _Out_ SAMPR_HANDLE *UserHandlePtr, _Out_ PSAMPR_USER_INFO_BUFFER *UserInfoPtr, _Out_ PNTSTATUS SubStatus)
Definition: sam.c:243
Definition: msv1_0.h:79
Definition: env_spec_w32.h:368
Referenced by LsaApLogonUserEx2(), and LsaApLogonUserEx2_Network().
