RPC_C_IMP_LEVEL_xxx
Used in the security functions and interfaces to specify the authentication
level.
Values
-
RPC_C_IMP_LEVEL_ANONYMOUS
-
(Not supported in this release.) The client is anonymous to the server. The
server process cannot obtain identification information about the client and
it cannot impersonate the client.
-
RPC_C_IMP_LEVEL_IDENTIFY
-
The server can obtain the client’s identity. The server can impersonate the
client for ACL checking, but cannot access system objects as the client. This
information is obtained when the connection is established, not on every call.
Note GetUserName will fail while impersonating at identify
level. The workaround is to impersonate, OpenThreadToken, revert, call
GetTokenInformation, and finally, call LookupAccountSid.
-
RPC_C_IMP_LEVEL_IMPERSONATE
-
The server process can impersonate the client's security context while
acting on behalf of the client. This information is obtained when the
connection is established, not on every call.
-
RPC_C_IMP_LEVEL_DELEGATE
-
(Not supported in this release.) The server process can impersonate the
client's security context while acting on behalf of the client. The server
process can also make outgoing calls to other servers while acting on behalf
of the client. This information is obtained when the connection is
established, not on every call.
Comments
Only the RPC_C_IMP_LEVEL_IDENTIFY and RPC_C_IMP_LEVEL_IMPERSONATE levels are
supported in NT 4.0.
See Also
CoInitializeSecurity