home *** CD-ROM | disk | FTP | other *** search
/ Chip 2002 June / Chip_2002-06_cd1.bin / zkuste / cecko / install / devcpp4920.exe / include / ntsecapi.h < prev    next >
Encoding:
C/C++ Source or Header  |  2001-09-14  |  24.3 KB  |  605 lines
  1. #ifndef _NTSECAPI_H
  2. #define _NTSECAPI_H
  3. #ifdef __cplusplus
  4. extern "C" {
  5. #endif
  6. #define LOGON_GUEST 1
  7. #define LOGON_NOENCRYPTION 2
  8. #define LOGON_CACHED_ACCOUNT 4
  9. #define LOGON_USED_LM_PASSWORD 8
  10. #define LOGON_EXTRA_SIDS 32
  11. #define LOGON_SUBAUTH_SESSION_KEY 64
  12. #define LOGON_SERVER_TRUST_ACCOUNT 128
  13. #define LOGON_NTLMV2_ENABLED 256
  14. #define LOGON_RESOURCE_GROUPS 512
  15. #define LOGON_PROFILE_PATH_RETURNED 1024
  16. #define LOGON_GRACE_LOGON 16777216
  17. #define LSA_MODE_PASSWORD_PROTECTED 1
  18. #define LSA_MODE_INDIVIDUAL_ACCOUNTS 2
  19. #define LSA_MODE_MANDATORY_ACCESS 3
  20. #define LSA_MODE_LOG_FULL 4
  21. #define LSA_SUCCESS(x) ((LONG)(x)>=0)
  22. #define MSV1_0_ALLOW_SERVER_TRUST_ACCOUNT 32
  23. #define MSV1_0_ALLOW_WORKSTATION_TRUST_ACCOUNT 2048
  24. #define MSV1_0_CHALLENGE_LENGTH 8
  25. #define MSV1_0_CLEARTEXT_PASSWORD_ALLOWED 2
  26. #define MSV1_0_CRED_LM_PRESENT 1
  27. #define MSV1_0_CRED_NT_PRESENT 2
  28. #define MSV1_0_CRED_VERSION 0
  29. #define MSV1_0_DONT_TRY_GUEST_ACCOUNT 16
  30. #define MSV1_0_LANMAN_SESSION_KEY_LENGTH 8
  31. #define MSV1_0_MAX_NTLM3_LIFE 1800
  32. #define MSV1_0_MAX_AVL_SIZE 64000
  33. #define MSV1_0_MNS_LOGON 16777216
  34. #define MSV1_0_NTLM3_RESPONSE_LENGTH 16
  35. #define MSV1_0_NTLM3_OWF_LENGTH 16
  36. #define MSV1_0_NTLM3_INPUT_LENGTH (sizeof(MSV1_0_NTLM3_RESPONSE)-MSV1_0_NTLM3_RESPONSE_LENGTH)
  37. #define MSV1_0_OWF_PASSWORD_LENGTH 16
  38. #define MSV1_0_PACKAGE_NAME "MICROSOFT_AUTHENTICATION_PACKAGE_V1_0"
  39. #define MSV1_0_PACKAGE_NAMEW L"MICROSOFT_AUTHENTICATION_PACKAGE_V1_0"
  40. #define MSV1_0_PACKAGE_NAMEW_LENGTH sizeof(MSV1_0_PACKAGE_NAMEW)-sizeof(WCHAR)
  41. #define MSV1_0_RETURN_USER_PARAMETERS 8
  42. #define MSV1_0_RETURN_PASSWORD_EXPIRY 64
  43. #define MSV1_0_RETURN_PROFILE_PATH 512
  44. #define MSV1_0_SUBAUTHENTICATION_DLL_EX 1048576
  45. #define MSV1_0_SUBAUTHENTICATION_DLL 0xff000000
  46. #define MSV1_0_SUBAUTHENTICATION_DLL_SHIFT 24
  47. #define MSV1_0_SUBAUTHENTICATION_DLL_RAS 2
  48. #define MSV1_0_SUBAUTHENTICATION_DLL_IIS 132
  49. #define MSV1_0_SUBAUTHENTICATION_FLAGS 0xff000000
  50. #define MSV1_0_SUBAUTHENTICATION_KEY "System\\CurrentControlSet\\Control\\Lsa\\MSV1_0"
  51. #define MSV1_0_SUBAUTHENTICATION_VALUE "Auth"
  52. #define MSV1_0_TRY_GUEST_ACCOUNT_ONLY 256
  53. #define MSV1_0_TRY_SPECIFIED_DOMAIN_ONLY 1024
  54. #define MSV1_0_UPDATE_LOGON_STATISTICS 4
  55. #define MSV1_0_USE_CLIENT_CHALLENGE 128
  56. #define MSV1_0_USER_SESSION_KEY_LENGTH 16
  57. #define POLICY_VIEW_LOCAL_INFORMATION 1
  58. #define POLICY_VIEW_AUDIT_INFORMATION 2
  59. #define POLICY_GET_PRIVATE_INFORMATION 4
  60. #define POLICY_TRUST_ADMIN 8
  61. #define POLICY_CREATE_ACCOUNT 16
  62. #define POLICY_CREATE_SECRET 32
  63. #define POLICY_CREATE_PRIVILEGE 64
  64. #define POLICY_SET_DEFAULT_QUOTA_LIMITS 128
  65. #define POLICY_SET_AUDIT_REQUIREMENTS 256
  66. #define POLICY_AUDIT_LOG_ADMIN 512
  67. #define POLICY_SERVER_ADMIN 1024
  68. #define POLICY_LOOKUP_NAMES 2048
  69. #define POLICY_READ (STANDARD_RIGHTS_READ|6)
  70. #define POLICY_WRITE (STANDARD_RIGHTS_WRITE|2040)
  71. #define POLICY_EXECUTE (STANDARD_RIGHTS_EXECUTE|2049)
  72. #define POLICY_ALL_ACCESS (STANDARD_RIGHTS_REQUIRED|4095)
  73. #define POLICY_AUDIT_EVENT_UNCHANGED 0
  74. #define POLICY_AUDIT_EVENT_SUCCESS 1
  75. #define POLICY_AUDIT_EVENT_FAILURE 2
  76. #define POLICY_AUDIT_EVENT_NONE 4
  77. #define POLICY_AUDIT_EVENT_MASK 7
  78. #define POLICY_LOCATION_LOCAL 1
  79. #define POLICY_LOCATION_DS 2
  80. #define POLICY_MACHINE_POLICY_LOCAL 0
  81. #define POLICY_MACHINE_POLICY_DEFAULTED 1
  82. #define POLICY_MACHINE_POLICY_EXPLICIT 2
  83. #define POLICY_MACHINE_POLICY_UNKNOWN 0xFFFFFFFF
  84. #define POLICY_QOS_SCHANEL_REQUIRED 1
  85. #define POLICY_QOS_OUTBOUND_INTEGRITY 2
  86. #define POLICY_QOS_OUTBOUND_CONFIDENTIALITY 4
  87. #define POLICY_QOS_INBOUND_INTEGREITY 8
  88. #define POLICY_QOS_INBOUND_CONFIDENTIALITY 16
  89. #define POLICY_QOS_ALLOW_LOCAL_ROOT_CERT_STORE 32
  90. #define POLICY_QOS_RAS_SERVER_ALLOWED 64
  91. #define POLICY_QOS_DHCP_SERVER_ALLOWD 128
  92. #define POLICY_KERBEROS_FORWARDABLE 1
  93. #define POLICY_KERBEROS_PROXYABLE 2
  94. #define POLICY_KERBEROS_RENEWABLE 4
  95. #define POLICY_KERBEROS_POSTDATEABLE 8
  96. #define SAM_PASSWORD_CHANGE_NOTIFY_ROUTINE "PasswordChangeNotify"
  97. #define SAM_INIT_NOTIFICATION_ROUTINE "InitializeChangeNotify"
  98. #define SAM_PASSWORD_FILTER_ROUTINE "PasswordFilter"
  99. #define SE_INTERACTIVE_LOGON_NAME TEXT("SeInteractiveLogonRight")
  100. #define SE_NETWORK_LOGON_NAME TEXT("SeNetworkLogonRight")
  101. #define SE_BATCH_LOGON_NAME TEXT("SeBatchLogonRight")
  102. #define SE_SERVICE_LOGON_NAME TEXT("SeServiceLogonRight")
  103. #define TRUST_ATTRIBUTE_NON_TRANSITIVE 1
  104. #define TRUST_ATTRIBUTE_UPLEVEL_ONLY 2
  105. #define TRUST_ATTRIBUTE_TREE_PARENT 4194304
  106. #define TRUST_ATTRIBUTES_VALID  -16580609
  107. #define TRUST_AUTH_TYPE_NONE 0
  108. #define TRUST_AUTH_TYPE_NT4OWF 1
  109. #define TRUST_AUTH_TYPE_CLEAR 2
  110. #define TRUST_DIRECTION_DISABLED 0
  111. #define TRUST_DIRECTION_INBOUND 1
  112. #define TRUST_DIRECTION_OUTBOUND 2
  113. #define TRUST_DIRECTION_BIDIRECTIONAL 3
  114. #define TRUST_TYPE_DOWNLEVEL 1
  115. #define TRUST_TYPE_UPLEVEL 2
  116. #define TRUST_TYPE_MIT 3
  117. #define TRUST_TYPE_DCE 4
  118. #if !defined(_NTDEF_H) && !defined(_SUBAUTH_H)
  119. typedef LONG NTSTATUS, *PNTSTATUS;
  120. typedef struct _UNICODE_STRING {
  121.   USHORT Length;
  122.   USHORT MaximumLength;
  123.   PWSTR Buffer;
  124. } UNICODE_STRING, *PUNICODE_STRING;
  125. typedef struct _STRING {
  126.   USHORT Length;
  127.   USHORT MaximumLength;
  128.   PCHAR Buffer;
  129. } STRING, *PSTRING;
  130. #endif
  131. typedef UNICODE_STRING LSA_UNICODE_STRING, *PLSA_UNICODE_STRING;
  132. typedef STRING LSA_STRING, *PLSA_STRING;
  133. typedef enum _MSV1_0_LOGON_SUBMIT_TYPE {
  134.   MsV1_0InteractiveLogon = 2,
  135.   MsV1_0Lm20Logon,
  136.   MsV1_0NetworkLogon,
  137.   MsV1_0SubAuthLogon,
  138.   MsV1_0WorkstationUnlockLogon = 7
  139. } MSV1_0_LOGON_SUBMIT_TYPE, *PMSV1_0_LOGON_SUBMIT_TYPE;
  140. typedef enum _MSV1_0_PROFILE_BUFFER_TYPE {
  141.   MsV1_0InteractiveProfile = 2,
  142.   MsV1_0Lm20LogonProfile,
  143.   MsV1_0SmartCardProfile
  144. } MSV1_0_PROFILE_BUFFER_TYPE, *PMSV1_0_PROFILE_BUFFER_TYPE;
  145. typedef enum {
  146.   MsvAvEOL,
  147.   MsvAvNbComputerName,
  148.   MsvAvNbDomainName,
  149.   MsvAvDnsComputerName,
  150.   MsvAvDnsDomainName
  151. } MSV1_0_AVID;
  152. typedef enum _MSV1_0_PROTOCOL_MESSAGE_TYPE {
  153.   MsV1_0Lm20ChallengeRequest = 0,
  154.   MsV1_0Lm20GetChallengeResponse,
  155.   MsV1_0EnumerateUsers,
  156.   MsV1_0GetUserInfo,
  157.   MsV1_0ReLogonUsers,
  158.   MsV1_0ChangePassword,
  159.   MsV1_0ChangeCachedPassword,
  160.   MsV1_0GenericPassthrough,
  161.   MsV1_0CacheLogon,
  162.   MsV1_0SubAuth,
  163.   MsV1_0DeriveCredential,
  164.   MsV1_0CacheLookup
  165. } MSV1_0_PROTOCOL_MESSAGE_TYPE, *PMSV1_0_PROTOCOL_MESSAGE_TYPE;
  166. typedef enum _POLICY_LSA_SERVER_ROLE {
  167.   PolicyServerRoleBackup = 2,
  168.   PolicyServerRolePrimary
  169. } POLICY_LSA_SERVER_ROLE, *PPOLICY_LSA_SERVER_ROLE;
  170. typedef enum _POLICY_SERVER_ENABLE_STATE {
  171.   PolicyServerEnabled = 2,
  172.   PolicyServerDisabled
  173. } POLICY_SERVER_ENABLE_STATE, *PPOLICY_SERVER_ENABLE_STATE;
  174. typedef enum _POLICY_INFORMATION_CLASS {
  175.   PolicyAuditLogInformation = 1,
  176.   PolicyAuditEventsInformation,
  177.   PolicyPrimaryDomainInformation,
  178.   PolicyPdAccountInformation,
  179.   PolicyAccountDomainInformation,
  180.   PolicyLsaServerRoleInformation,
  181.   PolicyReplicaSourceInformation,
  182.   PolicyDefaultQuotaInformation,
  183.   PolicyModificationInformation,
  184.   PolicyAuditFullSetInformation,
  185.   PolicyAuditFullQueryInformation,
  186.   PolicyDnsDomainInformation,
  187.   PolicyEfsInformation
  188. } POLICY_INFORMATION_CLASS, *PPOLICY_INFORMATION_CLASS;
  189. typedef enum _POLICY_AUDIT_EVENT_TYPE {
  190.   AuditCategorySystem,
  191.   AuditCategoryLogon,
  192.   AuditCategoryObjectAccess,
  193.   AuditCategoryPrivilegeUse,
  194.   AuditCategoryDetailedTracking,
  195.   AuditCategoryPolicyChange,
  196.   AuditCategoryAccountManagement,
  197.   AuditCategoryDirectoryServiceAccess,
  198.   AuditCategoryAccountLogon
  199. } POLICY_AUDIT_EVENT_TYPE, *PPOLICY_AUDIT_EVENT_TYPE;
  200. typedef enum _POLICY_LOCAL_INFORMATION_CLASS {
  201.   PolicyLocalAuditEventsInformation = 1,
  202.   PolicyLocalPdAccountInformation,
  203.   PolicyLocalAccountDomainInformation,
  204.   PolicyLocalLsaServerRoleInformation,
  205.   PolicyLocalReplicaSourceInformation,
  206.   PolicyLocalModificationInformation,
  207.   PolicyLocalAuditFullSetInformation,
  208.   PolicyLocalAuditFullQueryInformation,
  209.   PolicyLocalDnsDomainInformation,
  210.   PolicyLocalIPSecReferenceInformation,
  211.   PolicyLocalMachinePasswordInformation,
  212.   PolicyLocalQualityOfServiceInformation,
  213.   PolicyLocalPolicyLocationInformation
  214. } POLICY_LOCAL_INFORMATION_CLASS, *PPOLICY_LOCAL_INFORMATION_CLASS;
  215. typedef enum _POLICY_DOMAIN_INFORMATION_CLASS {
  216.   PolicyDomainIPSecReferenceInformation = 1,
  217.   PolicyDomainQualityOfServiceInformation,
  218.   PolicyDomainEfsInformation,
  219.   PolicyDomainPublicKeyInformation,
  220.   PolicyDomainPasswordPolicyInformation,
  221.   PolicyDomainLockoutInformation,
  222.   PolicyDomainKerberosTicketInformation
  223. } POLICY_DOMAIN_INFORMATION_CLASS, *PPOLICY_DOMAIN_INFORMATION_CLASS;
  224. typedef enum _SECURITY_LOGON_TYPE {
  225.   Interactive = 2,
  226.   Network,
  227.   Batch,
  228.   Service,
  229.   Proxy,
  230.   Unlock
  231. } SECURITY_LOGON_TYPE, *PSECURITY_LOGON_TYPE;
  232. typedef enum _TRUSTED_INFORMATION_CLASS {
  233.   TrustedDomainNameInformation = 1,
  234.   TrustedControllersInformation,
  235.   TrustedPosixOffsetInformation,
  236.   TrustedPasswordInformation,
  237.   TrustedDomainInformationBasic,
  238.   TrustedDomainInformationEx,
  239.   TrustedDomainAuthInformation,
  240.   TrustedDomainFullInformation
  241. } TRUSTED_INFORMATION_CLASS, *PTRUSTED_INFORMATION_CLASS;
  242. typedef struct _DOMAIN_PASSWORD_INFORMATION {
  243.   USHORT MinPasswordLength;
  244.   USHORT PasswordHistoryLength;
  245.   ULONG PasswordProperties;
  246.   LARGE_INTEGER MaxPasswordAge;
  247.   LARGE_INTEGER MinPasswordAge;
  248. } DOMAIN_PASSWORD_INFORMATION, *PDOMAIN_PASSWORD_INFORMATION;
  249. typedef ULONG LSA_ENUMERATION_HANDLE, *PLSA_ENUMERATION_HANDLE;
  250. typedef struct _LSA_ENUMERATION_INFORMATION {
  251.   PSID Sid;
  252. } LSA_ENUMERATION_INFORMATION, *PLSA_ENUMERATION_INFORMATION;
  253. typedef ULONG LSA_OPERATIONAL_MODE, *PLSA_OPERATIONAL_MODE;
  254. #if !defined(_NTDEF_H)
  255. typedef struct _LSA_OBJECT_ATTRIBUTES {
  256.   ULONG Length;
  257.   HANDLE RootDirectory;
  258.   PLSA_UNICODE_STRING ObjectName;
  259.   ULONG Attributes;
  260.   PVOID SecurityDescriptor;
  261.   PVOID SecurityQualityOfService;
  262. } OBJECT_ATTRIBUTES, *POBJECT_ATTRIBUTES;
  263. #endif
  264. typedef OBJECT_ATTRIBUTES LSA_OBJECT_ATTRIBUTES, *PLSA_OBJECT_ATTRIBUTES;
  265. typedef struct _LSA_TRUST_INFORMATION {
  266.   LSA_UNICODE_STRING Name;
  267.   PSID Sid;
  268. } LSA_TRUST_INFORMATION, *PLSA_TRUST_INFORMATION;
  269. typedef struct _LSA_REFERENCED_DOMAIN_LIST {
  270.   ULONG Entries;
  271.   PLSA_TRUST_INFORMATION Domains;
  272. } LSA_REFERENCED_DOMAIN_LIST, *PLSA_REFERENCED_DOMAIN_LIST;
  273. typedef struct _LSA_TRANSLATED_SID {
  274.   SID_NAME_USE Use;
  275.   ULONG RelativeId;
  276.   LONG DomainIndex;
  277. } LSA_TRANSLATED_SID, *PLSA_TRANSLATED_SID;
  278. typedef struct _LSA_TRANSLATED_NAME {
  279.   SID_NAME_USE Use;
  280.   LSA_UNICODE_STRING Name;
  281.   LONG DomainIndex;
  282. } LSA_TRANSLATED_NAME, *PLSA_TRANSLATED_NAME;
  283. typedef struct _MSV1_0_INTERACTIVE_LOGON {
  284.   MSV1_0_LOGON_SUBMIT_TYPE MessageType;
  285.   UNICODE_STRING LogonDomainName;
  286.   UNICODE_STRING UserName;
  287.   UNICODE_STRING Password;
  288. } MSV1_0_INTERACTIVE_LOGON, *PMSV1_0_INTERACTIVE_LOGON;
  289. typedef struct _MSV1_0_INTERACTIVE_PROFILE {
  290.   MSV1_0_PROFILE_BUFFER_TYPE MessageType;
  291.   USHORT LogonCount;
  292.   USHORT BadPasswordCount;
  293.   LARGE_INTEGER LogonTime;
  294.   LARGE_INTEGER LogoffTime;
  295.   LARGE_INTEGER KickOffTime;
  296.   LARGE_INTEGER PasswordLastSet;
  297.   LARGE_INTEGER PasswordCanChange;
  298.   LARGE_INTEGER PasswordMustChange;
  299.   UNICODE_STRING LogonScript;
  300.   UNICODE_STRING HomeDirectory;
  301.   UNICODE_STRING FullName;
  302.   UNICODE_STRING ProfilePath;
  303.   UNICODE_STRING HomeDirectoryDrive;
  304.   UNICODE_STRING LogonServer;
  305.   ULONG UserFlags;
  306. } MSV1_0_INTERACTIVE_PROFILE, *PMSV1_0_INTERACTIVE_PROFILE;
  307. typedef struct _MSV1_0_LM20_LOGON {
  308.   MSV1_0_LOGON_SUBMIT_TYPE MessageType;
  309.   UNICODE_STRING LogonDomainName;
  310.   UNICODE_STRING UserName;
  311.   UNICODE_STRING Workstation;
  312.   UCHAR ChallengeToClient[MSV1_0_CHALLENGE_LENGTH];
  313.   STRING CaseSensitiveChallengeResponse;
  314.   STRING CaseInsensitiveChallengeResponse;
  315.   ULONG ParameterControl;
  316. } MSV1_0_LM20_LOGON, * PMSV1_0_LM20_LOGON;
  317. typedef struct _MSV1_0_SUBAUTH_LOGON{ /* W2K only */
  318.   MSV1_0_LOGON_SUBMIT_TYPE MessageType;
  319.   UNICODE_STRING LogonDomainName;
  320.   UNICODE_STRING UserName;
  321.   UNICODE_STRING Workstation;
  322.   UCHAR ChallengeToClient[MSV1_0_CHALLENGE_LENGTH];
  323.   STRING AuthenticationInfo1;
  324.   STRING AuthenticationInfo2;
  325.   ULONG ParameterControl;
  326.   ULONG SubAuthPackageId;
  327. } MSV1_0_SUBAUTH_LOGON, * PMSV1_0_SUBAUTH_LOGON;
  328. typedef struct _MSV1_0_LM20_LOGON_PROFILE {
  329.   MSV1_0_PROFILE_BUFFER_TYPE MessageType;
  330.   LARGE_INTEGER KickOffTime;
  331.   LARGE_INTEGER LogoffTime;
  332.   ULONG UserFlags;
  333.   UCHAR UserSessionKey[MSV1_0_USER_SESSION_KEY_LENGTH];
  334.   UNICODE_STRING LogonDomainName;
  335.   UCHAR LanmanSessionKey[MSV1_0_LANMAN_SESSION_KEY_LENGTH];
  336.   UNICODE_STRING LogonServer;
  337.   UNICODE_STRING UserParameters;
  338. } MSV1_0_LM20_LOGON_PROFILE, * PMSV1_0_LM20_LOGON_PROFILE;
  339. typedef struct _MSV1_0_SUPPLEMENTAL_CREDENTIAL {
  340.   ULONG Version;
  341.   ULONG Flags;
  342.   UCHAR LmPassword[MSV1_0_OWF_PASSWORD_LENGTH];
  343.   UCHAR NtPassword[MSV1_0_OWF_PASSWORD_LENGTH];
  344. } MSV1_0_SUPPLEMENTAL_CREDENTIAL, *PMSV1_0_SUPPLEMENTAL_CREDENTIAL;
  345. typedef struct _MSV1_0_NTLM3_RESPONSE {
  346.   UCHAR Response[MSV1_0_NTLM3_RESPONSE_LENGTH];
  347.   UCHAR RespType;
  348.   UCHAR HiRespType;
  349.   USHORT Flags;
  350.   ULONG MsgWord;
  351.   ULONGLONG TimeStamp;
  352.   UCHAR ChallengeFromClient[MSV1_0_CHALLENGE_LENGTH];
  353.   ULONG AvPairsOff;
  354.   UCHAR Buffer[1];
  355. } MSV1_0_NTLM3_RESPONSE, *PMSV1_0_NTLM3_RESPONSE;
  356. typedef struct  _MSV1_0_AV_PAIR {
  357.   USHORT AvId;
  358.   USHORT AvLen;
  359. } MSV1_0_AV_PAIR, *PMSV1_0_AV_PAIR;
  360. typedef struct _MSV1_0_CHANGEPASSWORD_REQUEST {
  361.   MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
  362.   UNICODE_STRING DomainName;
  363.   UNICODE_STRING AccountName;
  364.   UNICODE_STRING OldPassword;
  365.   UNICODE_STRING NewPassword;
  366.   BOOLEAN Impersonating;
  367. } MSV1_0_CHANGEPASSWORD_REQUEST, *PMSV1_0_CHANGEPASSWORD_REQUEST;
  368. typedef struct _MSV1_0_CHANGEPASSWORD_RESPONSE {
  369.   MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
  370.   BOOLEAN PasswordInfoValid;
  371.   DOMAIN_PASSWORD_INFORMATION DomainPasswordInfo;
  372. } MSV1_0_CHANGEPASSWORD_RESPONSE, *PMSV1_0_CHANGEPASSWORD_RESPONSE;
  373. typedef struct _MSV1_0_SUBAUTH_REQUEST{
  374.   MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
  375.   ULONG SubAuthPackageId;
  376.   ULONG SubAuthInfoLength;
  377.   PUCHAR SubAuthSubmitBuffer;
  378. } MSV1_0_SUBAUTH_REQUEST, *PMSV1_0_SUBAUTH_REQUEST;
  379. typedef struct _MSV1_0_SUBAUTH_RESPONSE{
  380.   MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
  381.   ULONG SubAuthInfoLength;
  382.   PUCHAR SubAuthReturnBuffer;
  383. } MSV1_0_SUBAUTH_RESPONSE, *PMSV1_0_SUBAUTH_RESPONSE;
  384. #define MSV1_0_DERIVECRED_TYPE_SHA1 0
  385. typedef struct _MSV1_0_DERIVECRED_REQUEST {
  386.   MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
  387.   LUID LogonId;
  388.   ULONG DeriveCredType;
  389.   ULONG DeriveCredInfoLength;
  390.   UCHAR DeriveCredSubmitBuffer[1];
  391. } MSV1_0_DERIVECRED_REQUEST, *PMSV1_0_DERIVECRED_REQUEST;
  392. typedef struct _MSV1_0_DERIVECRED_RESPONSE {
  393.   MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
  394.   ULONG DeriveCredInfoLength;
  395.   UCHAR DeriveCredReturnBuffer[1];
  396. } MSV1_0_DERIVECRED_RESPONSE, *PMSV1_0_DERIVECRED_RESPONSE;
  397. typedef ULONG POLICY_AUDIT_EVENT_OPTIONS, *PPOLICY_AUDIT_EVENT_OPTIONS;
  398. typedef struct _POLICY_PRIVILEGE_DEFINITION {
  399.   LSA_UNICODE_STRING Name;
  400.   LUID LocalValue;
  401. } POLICY_PRIVILEGE_DEFINITION, *PPOLICY_PRIVILEGE_DEFINITION;
  402. typedef struct _POLICY_AUDIT_LOG_INFO {
  403.   ULONG AuditLogPercentFull;
  404.   ULONG MaximumLogSize;
  405.   LARGE_INTEGER AuditRetentionPeriod;
  406.   BOOLEAN AuditLogFullShutdownInProgress;
  407.   LARGE_INTEGER TimeToShutdown;
  408.   ULONG NextAuditRecordId;
  409. } POLICY_AUDIT_LOG_INFO, *PPOLICY_AUDIT_LOG_INFO;
  410. typedef struct _POLICY_AUDIT_EVENTS_INFO {
  411.   BOOLEAN AuditingMode;
  412.   PPOLICY_AUDIT_EVENT_OPTIONS EventAuditingOptions;
  413.   ULONG MaximumAuditEventCount;
  414. } POLICY_AUDIT_EVENTS_INFO, *PPOLICY_AUDIT_EVENTS_INFO;
  415. typedef struct _POLICY_ACCOUNT_DOMAIN_INFO {
  416.   LSA_UNICODE_STRING DomainName;
  417.   PSID DomainSid;
  418. } POLICY_ACCOUNT_DOMAIN_INFO, *PPOLICY_ACCOUNT_DOMAIN_INFO;
  419. typedef struct _POLICY_PRIMARY_DOMAIN_INFO {
  420.   LSA_UNICODE_STRING Name;
  421.   PSID Sid;
  422. } POLICY_PRIMARY_DOMAIN_INFO, *PPOLICY_PRIMARY_DOMAIN_INFO;
  423. typedef struct _POLICY_DNS_DOMAIN_INFO {
  424.   LSA_UNICODE_STRING Name;
  425.   LSA_UNICODE_STRING DnsDomainName;
  426.   LSA_UNICODE_STRING DnsTreeName;
  427.   GUID DomainGuid;
  428.   PSID Sid;
  429. } POLICY_DNS_DOMAIN_INFO, *PPOLICY_DNS_DOMAIN_INFO;
  430. typedef struct _POLICY_PD_ACCOUNT_INFO {
  431.   LSA_UNICODE_STRING Name;
  432. } POLICY_PD_ACCOUNT_INFO, *PPOLICY_PD_ACCOUNT_INFO;
  433. typedef struct _POLICY_LSA_SERVER_ROLE_INFO {
  434.   POLICY_LSA_SERVER_ROLE LsaServerRole;
  435. } POLICY_LSA_SERVER_ROLE_INFO, *PPOLICY_LSA_SERVER_ROLE_INFO;
  436. typedef struct _POLICY_REPLICA_SOURCE_INFO {
  437.   LSA_UNICODE_STRING ReplicaSource;
  438.   LSA_UNICODE_STRING ReplicaAccountName;
  439. } POLICY_REPLICA_SOURCE_INFO, *PPOLICY_REPLICA_SOURCE_INFO;
  440. typedef struct _POLICY_DEFAULT_QUOTA_INFO {
  441.   QUOTA_LIMITS QuotaLimits;
  442. } POLICY_DEFAULT_QUOTA_INFO, *PPOLICY_DEFAULT_QUOTA_INFO;
  443. typedef struct _POLICY_MODIFICATION_INFO {
  444.   LARGE_INTEGER ModifiedId;
  445.   LARGE_INTEGER DatabaseCreationTime;
  446. } POLICY_MODIFICATION_INFO, *PPOLICY_MODIFICATION_INFO;
  447. typedef struct _POLICY_AUDIT_FULL_SET_INFO {
  448.   BOOLEAN ShutDownOnFull;
  449. } POLICY_AUDIT_FULL_SET_INFO, *PPOLICY_AUDIT_FULL_SET_INFO;
  450. typedef struct _POLICY_AUDIT_FULL_QUERY_INFO {
  451.   BOOLEAN ShutDownOnFull;
  452.   BOOLEAN LogIsFull;
  453. } POLICY_AUDIT_FULL_QUERY_INFO, *PPOLICY_AUDIT_FULL_QUERY_INFO;
  454. typedef struct _POLICY_EFS_INFO {
  455.   ULONG InfoLength;
  456.   PUCHAR EfsBlob;
  457. } POLICY_EFS_INFO, *PPOLICY_EFS_INFO;
  458. typedef struct _POLICY_LOCAL_IPSEC_REFERENCE_INFO {
  459.   LSA_UNICODE_STRING ObjectPath;
  460. } POLICY_LOCAL_IPSEC_REFERENCE_INFO, *PPOLICY_LOCAL_IPSEC_REFERENCE_INFO;
  461. typedef struct _POLICY_LOCAL_MACHINE_PASSWORD_INFO {
  462.   LARGE_INTEGER PasswordChangeInterval;
  463. } POLICY_LOCAL_MACHINE_PASSWORD_INFO, *PPOLICY_LOCAL_MACHINE_PASSWORD_INFO;
  464. typedef struct _POLICY_LOCAL_POLICY_LOCATION_INFO {
  465.   ULONG PolicyLocation;
  466. } POLICY_LOCAL_POLICY_LOCATION_INFO, *PPOLICY_LOCAL_POLICY_LOCATION_INFO;
  467. typedef struct _POLICY_LOCAL_QUALITY_OF_SERVICE_INFO {
  468.   ULONG QualityOfService;
  469. } POLICY_LOCAL_QUALITY_OF_SERVICE_INFO, *PPOLICY_LOCAL_QUALITY_OF_SERVICE_INFO;
  470. typedef struct _POLICY_LOCAL_QUALITY_OF_SERVICE_INFO POLICY_DOMAIN_QUALITY_OF_SERVICE_INFO;
  471. typedef struct _POLICY_LOCAL_QUALITY_OF_SERVICE_INFO *PPOLICY_DOMAIN_QUALITY_OF_SERVICE_INFO;
  472. typedef struct _POLICY_DOMAIN_PUBLIC_KEY_INFO {
  473.   ULONG InfoLength;
  474.   PUCHAR PublicKeyInfo;
  475. } POLICY_DOMAIN_PUBLIC_KEY_INFO, *PPOLICY_DOMAIN_PUBLIC_KEY_INFO;
  476. typedef struct _POLICY_DOMAIN_LOCKOUT_INFO {
  477.   LARGE_INTEGER LockoutDuration;
  478.   LARGE_INTEGER LockoutObservationWindow;
  479.   USHORT LockoutThreshold;
  480. } POLICY_DOMAIN_LOCKOUT_INFO, *PPOLICY_DOMAIN_LOCKOUT_INFO;
  481. typedef struct _POLICY_DOMAIN_PASSWORD_INFO {
  482.   USHORT MinPasswordLength;
  483.   USHORT PasswordHistoryLength;
  484.   ULONG PasswordProperties;
  485.   LARGE_INTEGER MaxPasswordAge;
  486.   LARGE_INTEGER MinPasswordAge;
  487. } POLICY_DOMAIN_PASSWORD_INFO, *PPOLICY_DOMAIN_PASSWORD_INFO;
  488. typedef struct _POLICY_DOMAIN_KERBEROS_TICKET_INFO {
  489.   ULONG AuthenticationOptions;
  490.   LARGE_INTEGER MinTicketAge;
  491.   LARGE_INTEGER MaxTicketAge;
  492.   LARGE_INTEGER MaxRenewAge;
  493.   LARGE_INTEGER ProxyLifetime;
  494.   LARGE_INTEGER ForceLogoff;
  495. } POLICY_DOMAIN_KERBEROS_TICKET_INFO, *PPOLICY_DOMAIN_KERBEROS_TICKET_INFO;
  496. typedef PVOID LSA_HANDLE, *PLSA_HANDLE;
  497. typedef struct _TRUSTED_DOMAIN_NAME_INFO {
  498.   LSA_UNICODE_STRING Name;
  499. } TRUSTED_DOMAIN_NAME_INFO, *PTRUSTED_DOMAIN_NAME_INFO;
  500. typedef struct _TRUSTED_CONTROLLERS_INFO {
  501.   ULONG Entries;
  502.   PLSA_UNICODE_STRING Names;
  503. } TRUSTED_CONTROLLERS_INFO, *PTRUSTED_CONTROLLERS_INFO;
  504. typedef struct _TRUSTED_POSIX_OFFSET_INFO {
  505.   ULONG Offset;
  506. } TRUSTED_POSIX_OFFSET_INFO, *PTRUSTED_POSIX_OFFSET_INFO;
  507. typedef struct _TRUSTED_PASSWORD_INFO {
  508.   LSA_UNICODE_STRING Password;
  509.   LSA_UNICODE_STRING OldPassword;
  510. } TRUSTED_PASSWORD_INFO, *PTRUSTED_PASSWORD_INFO;
  511. typedef  LSA_TRUST_INFORMATION TRUSTED_DOMAIN_INFORMATION_BASIC;
  512. typedef PLSA_TRUST_INFORMATION *PTRUSTED_DOMAIN_INFORMATION_BASIC;
  513. typedef struct _TRUSTED_DOMAIN_INFORMATION_EX {
  514.   LSA_UNICODE_STRING Name;
  515.   LSA_UNICODE_STRING FlatName;
  516.   PSID Sid;
  517.   ULONG TrustDirection;
  518.   ULONG TrustType;
  519.   ULONG TrustAttributes;
  520. } TRUSTED_DOMAIN_INFORMATION_EX, *PTRUSTED_DOMAIN_INFORMATION_EX;
  521. typedef struct _LSA_AUTH_INFORMATION {
  522.   LARGE_INTEGER LastUpdateTime;
  523.   ULONG AuthType;
  524.   ULONG AuthInfoLength;
  525.   PUCHAR AuthInfo;
  526. } LSA_AUTH_INFORMATION, *PLSA_AUTH_INFORMATION;
  527. typedef struct _TRUSTED_DOMAIN_AUTH_INFORMATION {
  528.   ULONG IncomingAuthInfos;
  529.   PLSA_AUTH_INFORMATION IncomingAuthenticationInformation;
  530.   PLSA_AUTH_INFORMATION IncomingPreviousAuthenticationInformation;
  531.   ULONG OutgoingAuthInfos;
  532.   PLSA_AUTH_INFORMATION OutgoingAuthenticationInformation;
  533.   PLSA_AUTH_INFORMATION OutgoingPreviousAuthenticationInformation;
  534. } TRUSTED_DOMAIN_AUTH_INFORMATION, *PTRUSTED_DOMAIN_AUTH_INFORMATION;
  535. typedef struct _TRUSTED_DOMAIN_FULL_INFORMATION {
  536.   TRUSTED_DOMAIN_INFORMATION_EX Information;
  537.   TRUSTED_POSIX_OFFSET_INFO PosixOffset;
  538.   TRUSTED_DOMAIN_AUTH_INFORMATION AuthInformation;
  539. } TRUSTED_DOMAIN_FULL_INFORMATION, *PTRUSTED_DOMAIN_FULL_INFORMATION;
  540. NTSTATUS NTAPI LsaAddAccountRights(LSA_HANDLE,PSID,PLSA_UNICODE_STRING,ULONG);
  541. NTSTATUS NTAPI LsaCallAuthenticationPackage(HANDLE,ULONG,PVOID,ULONG,PVOID*,
  542.                             PULONG,PNTSTATUS);
  543. NTSTATUS NTAPI LsaClose(LSA_HANDLE);
  544. NTSTATUS NTAPI LsaConnectUntrusted(PHANDLE);
  545. NTSTATUS NTAPI LsaCreateTrustedDomainEx(LSA_HANDLE,
  546.                             PTRUSTED_DOMAIN_INFORMATION_EX,
  547.                             PTRUSTED_DOMAIN_AUTH_INFORMATION,ACCESS_MASK,
  548.                             PLSA_HANDLE);
  549. NTSTATUS NTAPI LsaDeleteTrustedDomain(LSA_HANDLE,PSID);
  550. NTSTATUS NTAPI LsaDeregisterLogonProcess(HANDLE);
  551. NTSTATUS NTAPI LsaEnumerateAccountRights(LSA_HANDLE,PSID,PLSA_UNICODE_STRING*,PULONG);
  552. NTSTATUS NTAPI LsaEnumerateAccountsWithUserRight(LSA_HANDLE,PLSA_UNICODE_STRING,
  553.                             PVOID*,PULONG);
  554. NTSTATUS NTAPI LsaEnumerateTrustedDomains(LSA_HANDLE,PLSA_ENUMERATION_HANDLE,
  555.                             PVOID*,ULONG,PULONG);
  556. NTSTATUS NTAPI LsaEnumerateTrustedDomainsEx(LSA_HANDLE,PLSA_ENUMERATION_HANDLE,
  557.                             TRUSTED_INFORMATION_CLASS,PVOID*,ULONG,PULONG);
  558. NTSTATUS NTAPI LsaFreeMemory(PVOID);
  559. NTSTATUS NTAPI LsaFreeReturnBuffer(PVOID);
  560. NTSTATUS NTAPI LsaLogonUser(HANDLE,PLSA_STRING,SECURITY_LOGON_TYPE,ULONG,PVOID,
  561.                             ULONG,PTOKEN_GROUPS,PTOKEN_SOURCE,PVOID*,PULONG,
  562.                             PLUID,PHANDLE,PQUOTA_LIMITS,PNTSTATUS);
  563. NTSTATUS NTAPI LsaLookupAuthenticationPackage(HANDLE,PLSA_STRING,PULONG);
  564. NTSTATUS NTAPI LsaLookupNames(LSA_HANDLE,ULONG,PLSA_UNICODE_STRING,
  565.                             PLSA_REFERENCED_DOMAIN_LIST*,PLSA_TRANSLATED_SID*);
  566. NTSTATUS NTAPI LsaLookupSids(LSA_HANDLE,ULONG,PSID*,
  567.                             PLSA_REFERENCED_DOMAIN_LIST*,PLSA_TRANSLATED_NAME*);
  568. ULONG NTAPI LsaNtStatusToWinError(NTSTATUS);
  569. NTSTATUS NTAPI LsaOpenPolicy(PLSA_UNICODE_STRING,PLSA_OBJECT_ATTRIBUTES,
  570.                             ACCESS_MASK,PLSA_HANDLE);
  571. NTSTATUS NTAPI LsaQueryDomainInformationPolicy(LSA_HANDLE,
  572.                             POLICY_DOMAIN_INFORMATION_CLASS,PVOID*);
  573. NTSTATUS NTAPI LsaQueryInformationPolicy(LSA_HANDLE,POLICY_INFORMATION_CLASS,PVOID*);
  574. NTSTATUS NTAPI LsaQueryLocalInformationPolicy(LSA_HANDLE,
  575.                             POLICY_LOCAL_INFORMATION_CLASS,PVOID*);
  576. NTSTATUS NTAPI LsaQueryTrustedDomainInfo(LSA_HANDLE,PSID,
  577.                             TRUSTED_INFORMATION_CLASS,PVOID*);
  578. NTSTATUS NTAPI LsaQueryTrustedDomainInfoByName(LSA_HANDLE,PLSA_UNICODE_STRING,
  579.                             TRUSTED_INFORMATION_CLASS,PVOID*);
  580. NTSTATUS NTAPI LsaRegisterLogonProcess(PLSA_STRING,PHANDLE,PLSA_OPERATIONAL_MODE);
  581. NTSTATUS NTAPI LsaRemoveAccountRights(LSA_HANDLE,PSID,BOOLEAN,
  582.                             PLSA_UNICODE_STRING,ULONG);
  583. NTSTATUS NTAPI LsaRetrievePrivateData(LSA_HANDLE,PLSA_UNICODE_STRING,
  584.                             PLSA_UNICODE_STRING*);
  585. NTSTATUS NTAPI LsaSetDomainInformationPolicy(LSA_HANDLE,
  586.                             POLICY_DOMAIN_INFORMATION_CLASS,PVOID);
  587. NTSTATUS NTAPI LsaSetInformationPolicy(LSA_HANDLE,POLICY_INFORMATION_CLASS, PVOID);
  588. NTSTATUS NTAPI LsaSetLocalInformationPolicy(LSA_HANDLE,
  589.                             POLICY_LOCAL_INFORMATION_CLASS,PVOID);
  590. NTSTATUS NTAPI LsaSetTrustedDomainInformation(LSA_HANDLE,PSID,
  591.                             TRUSTED_INFORMATION_CLASS,PVOID);
  592. NTSTATUS NTAPI LsaSetTrustedDomainInfoByName(LSA_HANDLE,PLSA_UNICODE_STRING,
  593.                             TRUSTED_INFORMATION_CLASS,PVOID);
  594. NTSTATUS NTAPI LsaStorePrivateData(LSA_HANDLE,PLSA_UNICODE_STRING,
  595.                             PLSA_UNICODE_STRING);
  596. typedef NTSTATUS (*PSAM_PASSWORD_NOTIFICATION_ROUTINE)(PUNICODE_STRING,
  597.                             ULONG,PUNICODE_STRING);
  598. typedef BOOLEAN (*PSAM_INIT_NOTIFICATION_ROUTINE)();
  599. typedef BOOLEAN (*PSAM_PASSWORD_FILTER_ROUTINE)(PUNICODE_STRING,PUNICODE_STRING,
  600.                             PUNICODE_STRING,BOOLEAN);
  601. #ifdef __cplusplus
  602. }
  603. #endif
  604. #endif /* _NTSECAPI_H */
  605.