projects / reactos.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Reintegrate header-work branch. Important changes include continued work on headers...
[reactos.git] / reactos / include / psdk / ntsecapi.h
1 #ifndef _NTSECAPI_H
2 #define _NTSECAPI_H
3
4 #ifdef __cplusplus
5 extern "C" {
6 #endif
7 #define KERB_WRAP_NO_ENCRYPT 0x80000001
8 #define LOGON_GUEST 1
9 #define LOGON_NOENCRYPTION 2
10 #define LOGON_CACHED_ACCOUNT 4
11 #define LOGON_USED_LM_PASSWORD 8
12 #define LOGON_EXTRA_SIDS 32
13 #define LOGON_SUBAUTH_SESSION_KEY 64
14 #define LOGON_SERVER_TRUST_ACCOUNT 128
15 #define LOGON_NTLMV2_ENABLED 256
16 #define LOGON_RESOURCE_GROUPS 512
17 #define LOGON_PROFILE_PATH_RETURNED 1024
18 #define LOGON_GRACE_LOGON 16777216
19 #define LSA_MODE_PASSWORD_PROTECTED 1
20 #define LSA_MODE_INDIVIDUAL_ACCOUNTS 2
21 #define LSA_MODE_MANDATORY_ACCESS 3
22 #define LSA_MODE_LOG_FULL 4
23 #define LSA_SUCCESS(x) ((LONG)(x)>=0)
24 #define MICROSOFT_KERBEROS_NAME_A "Kerberos"
25 #define MICROSOFT_KERBEROS_NAME_W L"Kerberos"
26 #define MSV1_0_ALLOW_SERVER_TRUST_ACCOUNT 32
27 #define MSV1_0_ALLOW_WORKSTATION_TRUST_ACCOUNT 2048
28 #define MSV1_0_CHALLENGE_LENGTH 8
29 #define MSV1_0_CLEARTEXT_PASSWORD_ALLOWED 2
30 #define MSV1_0_CRED_LM_PRESENT 1
31 #define MSV1_0_CRED_NT_PRESENT 2
32 #define MSV1_0_CRED_VERSION 0
33 #define MSV1_0_DONT_TRY_GUEST_ACCOUNT 16
34 #define MSV1_0_LANMAN_SESSION_KEY_LENGTH 8
35 #define MSV1_0_MAX_NTLM3_LIFE 1800
36 #define MSV1_0_MAX_AVL_SIZE 64000
37 #define MSV1_0_MNS_LOGON 16777216
38 #define MSV1_0_NTLM3_RESPONSE_LENGTH 16
39 #define MSV1_0_NTLM3_OWF_LENGTH 16
40 #define MSV1_0_NTLM3_INPUT_LENGTH (sizeof(MSV1_0_NTLM3_RESPONSE)-MSV1_0_NTLM3_RESPONSE_LENGTH)
41 #define MSV1_0_OWF_PASSWORD_LENGTH 16
42 #define MSV1_0_PACKAGE_NAME "MICROSOFT_AUTHENTICATION_PACKAGE_V1_0"
43 #define MSV1_0_PACKAGE_NAMEW L"MICROSOFT_AUTHENTICATION_PACKAGE_V1_0"
44 #define MSV1_0_PACKAGE_NAMEW_LENGTH sizeof(MSV1_0_PACKAGE_NAMEW)-sizeof(WCHAR)
45 #define MSV1_0_RETURN_USER_PARAMETERS 8
46 #define MSV1_0_RETURN_PASSWORD_EXPIRY 64
47 #define MSV1_0_RETURN_PROFILE_PATH 512
48 #define MSV1_0_SUBAUTHENTICATION_DLL_EX 1048576
49 #define MSV1_0_SUBAUTHENTICATION_DLL 0xff000000
50 #define MSV1_0_SUBAUTHENTICATION_DLL_SHIFT 24
51 #define MSV1_0_SUBAUTHENTICATION_DLL_RAS 2
52 #define MSV1_0_SUBAUTHENTICATION_DLL_IIS 132
53 #define MSV1_0_SUBAUTHENTICATION_FLAGS 0xff000000
54 #define MSV1_0_SUBAUTHENTICATION_KEY "System\\CurrentControlSet\\Control\\Lsa\\MSV1_0"
55 #define MSV1_0_SUBAUTHENTICATION_VALUE "Auth"
56 #define MSV1_0_TRY_GUEST_ACCOUNT_ONLY 256
57 #define MSV1_0_TRY_SPECIFIED_DOMAIN_ONLY 1024
58 #define MSV1_0_UPDATE_LOGON_STATISTICS 4
59 #define MSV1_0_USE_CLIENT_CHALLENGE 128
60 #define MSV1_0_USER_SESSION_KEY_LENGTH 16
61 #define POLICY_VIEW_LOCAL_INFORMATION 1
62 #define POLICY_VIEW_AUDIT_INFORMATION 2
63 #define POLICY_GET_PRIVATE_INFORMATION 4
64 #define POLICY_TRUST_ADMIN 8
65 #define POLICY_CREATE_ACCOUNT 16
66 #define POLICY_CREATE_SECRET 32
67 #define POLICY_CREATE_PRIVILEGE 64
68 #define POLICY_SET_DEFAULT_QUOTA_LIMITS 128
69 #define POLICY_SET_AUDIT_REQUIREMENTS 256
70 #define POLICY_AUDIT_LOG_ADMIN 512
71 #define POLICY_SERVER_ADMIN 1024
72 #define POLICY_LOOKUP_NAMES 2048
73 #define POLICY_READ (STANDARD_RIGHTS_READ|6)
74 #define POLICY_WRITE (STANDARD_RIGHTS_WRITE|2040)
75 #define POLICY_EXECUTE (STANDARD_RIGHTS_EXECUTE|2049)
76 #define POLICY_ALL_ACCESS (STANDARD_RIGHTS_REQUIRED|4095)
77 #define POLICY_AUDIT_EVENT_UNCHANGED 0
78 #define POLICY_AUDIT_EVENT_SUCCESS 1
79 #define POLICY_AUDIT_EVENT_FAILURE 2
80 #define POLICY_AUDIT_EVENT_NONE 4
81 #define POLICY_AUDIT_EVENT_MASK 7
82 #define POLICY_LOCATION_LOCAL 1
83 #define POLICY_LOCATION_DS 2
84 #define POLICY_MACHINE_POLICY_LOCAL 0
85 #define POLICY_MACHINE_POLICY_DEFAULTED 1
86 #define POLICY_MACHINE_POLICY_EXPLICIT 2
87 #define POLICY_MACHINE_POLICY_UNKNOWN 0xFFFFFFFF
88 #define POLICY_QOS_SCHANEL_REQUIRED 1
89 #define POLICY_QOS_OUTBOUND_INTEGRITY 2
90 #define POLICY_QOS_OUTBOUND_CONFIDENTIALITY 4
91 #define POLICY_QOS_INBOUND_INTEGREITY 8
92 #define POLICY_QOS_INBOUND_CONFIDENTIALITY 16
93 #define POLICY_QOS_ALLOW_LOCAL_ROOT_CERT_STORE 32
94 #define POLICY_QOS_RAS_SERVER_ALLOWED 64
95 #define POLICY_QOS_DHCP_SERVER_ALLOWD 128
96 #define POLICY_KERBEROS_FORWARDABLE 1
97 #define POLICY_KERBEROS_PROXYABLE 2
98 #define POLICY_KERBEROS_RENEWABLE 4
99 #define POLICY_KERBEROS_POSTDATEABLE 8
100 #define SAM_PASSWORD_CHANGE_NOTIFY_ROUTINE "PasswordChangeNotify"
101 #define SAM_INIT_NOTIFICATION_ROUTINE "InitializeChangeNotify"
102 #define SAM_PASSWORD_FILTER_ROUTINE "PasswordFilter"
103 #define SE_INTERACTIVE_LOGON_NAME TEXT("SeInteractiveLogonRight")
104 #define SE_NETWORK_LOGON_NAME TEXT("SeNetworkLogonRight")
105 #define SE_BATCH_LOGON_NAME TEXT("SeBatchLogonRight")
106 #define SE_SERVICE_LOGON_NAME TEXT("SeServiceLogonRight")
107 #define TRUST_ATTRIBUTE_NON_TRANSITIVE 1
108 #define TRUST_ATTRIBUTE_UPLEVEL_ONLY 2
109 #define TRUST_ATTRIBUTE_TREE_PARENT 4194304
110 #define TRUST_ATTRIBUTES_VALID -16580609
111 #define TRUST_AUTH_TYPE_NONE 0
112 #define TRUST_AUTH_TYPE_NT4OWF 1
113 #define TRUST_AUTH_TYPE_CLEAR 2
114 #define TRUST_DIRECTION_DISABLED 0
115 #define TRUST_DIRECTION_INBOUND 1
116 #define TRUST_DIRECTION_OUTBOUND 2
117 #define TRUST_DIRECTION_BIDIRECTIONAL 3
118 #define TRUST_TYPE_DOWNLEVEL 1
119 #define TRUST_TYPE_UPLEVEL 2
120 #define TRUST_TYPE_MIT 3
121 #define TRUST_TYPE_DCE 4
122
123 #define SCESTATUS_SUCCESS 0L
124 #define SCESTATUS_INVALID_PARAMETER 1L
125 #define SCESTATUS_RECORD_NOT_FOUND 2L
126 #define SCESTATUS_INVALID_DATA 3L
127 #define SCESTATUS_OBJECT_EXISTS 4L
128 #define SCESTATUS_BUFFER_TOO_SMALL 5L
129 #define SCESTATUS_PROFILE_NOT_FOUND 6L
130 #define SCESTATUS_BAD_FORMAT 7L
131 #define SCESTATUS_NOT_ENOUGH_RESOURCE 8L
132 #define SCESTATUS_ACCESS_DENIED 9L
133 #define SCESTATUS_CANT_DELETE 10L
134 #define SCESTATUS_PREFIX_OVERFLOW 11L
135 #define SCESTATUS_OTHER_ERROR 12L
136 #define SCESTATUS_ALREADY_RUNNING 13L
137 #define SCESTATUS_SERVICE_NOT_SUPPORT 14L
138 #define SCESTATUS_MOD_NOT_FOUND 15L
139 #define SCESTATUS_EXCEPTION_IN_SERVER 16L
140 #define SCESTATUS_NO_TEMPLATE_GIVEN 17L
141 #define SCESTATUS_NO_MAPPING 18L
142 #define SCESTATUS_TRUST_FAIL 19L
143
144 #if !defined(_NTDEF_)
145 typedef LONG NTSTATUS, *PNTSTATUS;
146 #endif
147
148 #if defined (_NTDEF_)
149 typedef UNICODE_STRING LSA_UNICODE_STRING, *PLSA_UNICODE_STRING;
150 typedef STRING LSA_STRING, *PLSA_STRING;
151 typedef OBJECT_ATTRIBUTES LSA_OBJECT_ATTRIBUTES, *PLSA_OBJECT_ATTRIBUTES;
152
153 #else
154
155 typedef struct _LSA_UNICODE_STRING {
156 USHORT Length;
157 USHORT MaximumLength;
158 #ifdef MIDL_PASS
159 [size_is(MaximumLength / 2), length_is(Length / 2)]
160 #endif
161 PWSTR Buffer;
162 } LSA_UNICODE_STRING, *PLSA_UNICODE_STRING;
163
164 typedef struct _LSA_STRING {
165 USHORT Length;
166 USHORT MaximumLength;
167 PCHAR Buffer;
168 } LSA_STRING, *PLSA_STRING;
169
170 typedef struct _LSA_OBJECT_ATTRIBUTES {
171 ULONG Length;
172 HANDLE RootDirectory;
173 PLSA_UNICODE_STRING ObjectName;
174 ULONG Attributes;
175 PVOID SecurityDescriptor;
176 PVOID SecurityQualityOfService;
177 } LSA_OBJECT_ATTRIBUTES, *PLSA_OBJECT_ATTRIBUTES;
178
179 typedef LSA_UNICODE_STRING UNICODE_STRING, *PUNICODE_STRING;
180 typedef LSA_STRING STRING, *PSTRING ;
181
182 #endif
183
184 typedef enum _KERB_LOGON_SUBMIT_TYPE
185 {
186 KerbInteractiveLogon = 2,
187 KerbS4ULogon = 12,
188 KerbTicketLogon = 10,
189 KerbTicketUnlockLogon = 11
190 } KERB_LOGON_SUBMIT_TYPE, *PKERB_LOGON_SUBMIT_TYPE;
191 typedef enum _MSV1_0_LOGON_SUBMIT_TYPE {
192 MsV1_0InteractiveLogon = 2,
193 MsV1_0Lm20Logon,
194 MsV1_0NetworkLogon,
195 MsV1_0SubAuthLogon,
196 MsV1_0WorkstationUnlockLogon = 7
197 } MSV1_0_LOGON_SUBMIT_TYPE, *PMSV1_0_LOGON_SUBMIT_TYPE;
198 typedef enum _MSV1_0_PROFILE_BUFFER_TYPE {
199 MsV1_0InteractiveProfile = 2,
200 MsV1_0Lm20LogonProfile,
201 MsV1_0SmartCardProfile
202 } MSV1_0_PROFILE_BUFFER_TYPE, *PMSV1_0_PROFILE_BUFFER_TYPE;
203 typedef enum {
204 MsvAvEOL,
205 MsvAvNbComputerName,
206 MsvAvNbDomainName,
207 MsvAvDnsComputerName,
208 MsvAvDnsDomainName
209 } MSV1_0_AVID;
210 typedef enum _MSV1_0_PROTOCOL_MESSAGE_TYPE {
211 MsV1_0Lm20ChallengeRequest = 0,
212 MsV1_0Lm20GetChallengeResponse,
213 MsV1_0EnumerateUsers,
214 MsV1_0GetUserInfo,
215 MsV1_0ReLogonUsers,
216 MsV1_0ChangePassword,
217 MsV1_0ChangeCachedPassword,
218 MsV1_0GenericPassthrough,
219 MsV1_0CacheLogon,
220 MsV1_0SubAuth,
221 MsV1_0DeriveCredential,
222 MsV1_0CacheLookup
223 } MSV1_0_PROTOCOL_MESSAGE_TYPE, *PMSV1_0_PROTOCOL_MESSAGE_TYPE;
224 typedef enum _POLICY_LSA_SERVER_ROLE {
225 PolicyServerRoleBackup = 2,
226 PolicyServerRolePrimary
227 } POLICY_LSA_SERVER_ROLE, *PPOLICY_LSA_SERVER_ROLE;
228 typedef enum _POLICY_SERVER_ENABLE_STATE {
229 PolicyServerEnabled = 2,
230 PolicyServerDisabled
231 } POLICY_SERVER_ENABLE_STATE, *PPOLICY_SERVER_ENABLE_STATE;
232 typedef enum _POLICY_INFORMATION_CLASS {
233 PolicyAuditLogInformation = 1,
234 PolicyAuditEventsInformation,
235 PolicyPrimaryDomainInformation,
236 PolicyPdAccountInformation,
237 PolicyAccountDomainInformation,
238 PolicyLsaServerRoleInformation,
239 PolicyReplicaSourceInformation,
240 PolicyDefaultQuotaInformation,
241 PolicyModificationInformation,
242 PolicyAuditFullSetInformation,
243 PolicyAuditFullQueryInformation,
244 PolicyDnsDomainInformation,
245 PolicyEfsInformation
246 } POLICY_INFORMATION_CLASS, *PPOLICY_INFORMATION_CLASS;
247 typedef enum _POLICY_AUDIT_EVENT_TYPE {
248 AuditCategorySystem,
249 AuditCategoryLogon,
250 AuditCategoryObjectAccess,
251 AuditCategoryPrivilegeUse,
252 AuditCategoryDetailedTracking,
253 AuditCategoryPolicyChange,
254 AuditCategoryAccountManagement,
255 AuditCategoryDirectoryServiceAccess,
256 AuditCategoryAccountLogon
257 } POLICY_AUDIT_EVENT_TYPE, *PPOLICY_AUDIT_EVENT_TYPE;
258 typedef enum _POLICY_LOCAL_INFORMATION_CLASS {
259 PolicyLocalAuditEventsInformation = 1,
260 PolicyLocalPdAccountInformation,
261 PolicyLocalAccountDomainInformation,
262 PolicyLocalLsaServerRoleInformation,
263 PolicyLocalReplicaSourceInformation,
264 PolicyLocalModificationInformation,
265 PolicyLocalAuditFullSetInformation,
266 PolicyLocalAuditFullQueryInformation,
267 PolicyLocalDnsDomainInformation,
268 PolicyLocalIPSecReferenceInformation,
269 PolicyLocalMachinePasswordInformation,
270 PolicyLocalQualityOfServiceInformation,
271 PolicyLocalPolicyLocationInformation
272 } POLICY_LOCAL_INFORMATION_CLASS, *PPOLICY_LOCAL_INFORMATION_CLASS;
273 typedef enum _POLICY_DOMAIN_INFORMATION_CLASS {
274 PolicyDomainIPSecReferenceInformation = 1,
275 PolicyDomainQualityOfServiceInformation,
276 PolicyDomainEfsInformation,
277 PolicyDomainPublicKeyInformation,
278 PolicyDomainPasswordPolicyInformation,
279 PolicyDomainLockoutInformation,
280 PolicyDomainKerberosTicketInformation
281 } POLICY_DOMAIN_INFORMATION_CLASS, *PPOLICY_DOMAIN_INFORMATION_CLASS;
282 typedef enum _POLICY_NOTIFICATION_INFORMATION_CLASS {
283 PolicyNotifyAuditEventsInformation = 1,
284 PolicyNotifyAccountDomainInformation,
285 PolicyNotifyServerRoleInformation,
286 PolicyNotifyDnsDomainInformation,
287 PolicyNotifyDomainEfsInformation,
288 PolicyNotifyDomainKerberosTicketInformation,
289 PolicyNotifyMachineAccountPasswordInformation
290 } POLICY_NOTIFICATION_INFORMATION_CLASS, *PPOLICY_NOTIFICATION_INFORMATION_CLASS;
291 typedef enum _SECURITY_LOGON_TYPE {
292 Interactive = 2,
293 Network,
294 Batch,
295 Service,
296 Proxy,
297 Unlock
298 } SECURITY_LOGON_TYPE, *PSECURITY_LOGON_TYPE;
299 typedef struct _SECURITY_LOGON_SESSION_DATA {
300 ULONG Size;
301 LUID LogonId;
302 LSA_UNICODE_STRING UserName;
303 LSA_UNICODE_STRING LogonDomain;
304 LSA_UNICODE_STRING AuthenticationPackage;
305 ULONG LogonType;
306 ULONG Session;
307 PSID Sid;
308 LARGE_INTEGER LogonTime;
309 LSA_UNICODE_STRING LogonServer;
310 LSA_UNICODE_STRING DnsDomainName;
311 LSA_UNICODE_STRING Upn;
312 } SECURITY_LOGON_SESSION_DATA, *PSECURITY_LOGON_SESSION_DATA;
313 typedef enum _TRUSTED_INFORMATION_CLASS {
314 TrustedDomainNameInformation = 1,
315 TrustedControllersInformation,
316 TrustedPosixOffsetInformation,
317 TrustedPasswordInformation,
318 TrustedDomainInformationBasic,
319 TrustedDomainInformationEx,
320 TrustedDomainAuthInformation,
321 TrustedDomainFullInformation
322 } TRUSTED_INFORMATION_CLASS, *PTRUSTED_INFORMATION_CLASS;
323 typedef enum _LSA_FOREST_TRUST_RECORD_TYPE {
324 ForestTrustTopLevelName,
325 ForestTrustTopLevelNameEx,
326 ForestTrustDomainInfo,
327 ForestTrustRecordTypeLast = ForestTrustDomainInfo
328 } LSA_FOREST_TRUST_RECORD_TYPE;
329 typedef enum _LSA_FOREST_TRUST_COLLISION_RECORD_TYPE {
330 CollisionTdo,
331 CollisionXref,
332 CollisionOther
333 } LSA_FOREST_TRUST_COLLISION_RECORD_TYPE;
334 typedef struct _DOMAIN_PASSWORD_INFORMATION {
335 USHORT MinPasswordLength;
336 USHORT PasswordHistoryLength;
337 ULONG PasswordProperties;
338 LARGE_INTEGER MaxPasswordAge;
339 LARGE_INTEGER MinPasswordAge;
340 } DOMAIN_PASSWORD_INFORMATION, *PDOMAIN_PASSWORD_INFORMATION;
341 typedef ULONG LSA_ENUMERATION_HANDLE, *PLSA_ENUMERATION_HANDLE;
342 typedef struct _LSA_ENUMERATION_INFORMATION {
343 PSID Sid;
344 } LSA_ENUMERATION_INFORMATION, *PLSA_ENUMERATION_INFORMATION;
345 typedef ULONG LSA_OPERATIONAL_MODE, *PLSA_OPERATIONAL_MODE;
346
347 typedef struct _LSA_FOREST_TRUST_DOMAIN_INFO {
348 PSID Sid;
349 LSA_UNICODE_STRING DnsName;
350 LSA_UNICODE_STRING NetbiosName;
351 } LSA_FOREST_TRUST_DOMAIN_INFO, *PLSA_FOREST_TRUST_DOMAIN_INFO;
352 typedef struct _LSA_FOREST_TRUST_BINARY_DATA {
353 ULONG Length;
354 PUCHAR Buffer;
355 } LSA_FOREST_TRUST_BINARY_DATA, *PLSA_FOREST_TRUST_BINARY_DATA;
356 typedef struct _LSA_FOREST_TRUST_RECORD {
357 ULONG Flags;
358 LSA_FOREST_TRUST_RECORD_TYPE ForestTrustType;
359 LARGE_INTEGER Time;
360 union {
361 LSA_UNICODE_STRING TopLevelName;
362 LSA_FOREST_TRUST_DOMAIN_INFO DomainInfo;
363 LSA_FOREST_TRUST_BINARY_DATA Data;
364 } ForestTrustData;
365 } LSA_FOREST_TRUST_RECORD, *PLSA_FOREST_TRUST_RECORD;
366 typedef struct _LSA_FOREST_TRUST_INFORMATION {
367 ULONG RecordCount;
368 PLSA_FOREST_TRUST_RECORD *Entries;
369 } LSA_FOREST_TRUST_INFORMATION, *PLSA_FOREST_TRUST_INFORMATION;
370 typedef struct _LSA_FOREST_TRUST_COLLISION_RECORD {
371 ULONG Index;
372 LSA_FOREST_TRUST_COLLISION_RECORD_TYPE Type;
373 ULONG Flags;
374 LSA_UNICODE_STRING Name;
375 } LSA_FOREST_TRUST_COLLISION_RECORD, *PLSA_FOREST_TRUST_COLLISION_RECORD;
376 typedef struct _LSA_FOREST_TRUST_COLLISION_INFORMATION {
377 ULONG RecordCount;
378 PLSA_FOREST_TRUST_COLLISION_RECORD *Entries;
379 } LSA_FOREST_TRUST_COLLISION_INFORMATION, *PLSA_FOREST_TRUST_COLLISION_INFORMATION;
380 typedef struct _LSA_TRUST_INFORMATION {
381 LSA_UNICODE_STRING Name;
382 PSID Sid;
383 } LSA_TRUST_INFORMATION, *PLSA_TRUST_INFORMATION;
384 typedef struct _LSA_REFERENCED_DOMAIN_LIST {
385 ULONG Entries;
386 PLSA_TRUST_INFORMATION Domains;
387 } LSA_REFERENCED_DOMAIN_LIST, *PLSA_REFERENCED_DOMAIN_LIST;
388 typedef struct _LSA_TRANSLATED_SID {
389 SID_NAME_USE Use;
390 ULONG RelativeId;
391 LONG DomainIndex;
392 } LSA_TRANSLATED_SID, *PLSA_TRANSLATED_SID;
393 typedef struct _LSA_TRANSLATED_SID2 {
394 SID_NAME_USE Use;
395 PSID Sid;
396 LONG DomainIndex;
397 ULONG Flags;
398 } LSA_TRANSLATED_SID2, *PLSA_TRANSLATED_SID2;
399 typedef struct _LSA_TRANSLATED_NAME {
400 SID_NAME_USE Use;
401 LSA_UNICODE_STRING Name;
402 LONG DomainIndex;
403 } LSA_TRANSLATED_NAME, *PLSA_TRANSLATED_NAME;
404
405 typedef struct _KERB_INTERACTIVE_LOGON {
406 KERB_LOGON_SUBMIT_TYPE MessageType;
407 UNICODE_STRING LogonDomainName;
408 UNICODE_STRING UserName;
409 UNICODE_STRING Password;
410 } KERB_INTERACTIVE_LOGON, *PKERB_INTERACTIVE_LOGON;
411 typedef struct _MSV1_0_INTERACTIVE_LOGON {
412 MSV1_0_LOGON_SUBMIT_TYPE MessageType;
413 UNICODE_STRING LogonDomainName;
414 UNICODE_STRING UserName;
415 UNICODE_STRING Password;
416 } MSV1_0_INTERACTIVE_LOGON, *PMSV1_0_INTERACTIVE_LOGON;
417 typedef struct _MSV1_0_INTERACTIVE_PROFILE {
418 MSV1_0_PROFILE_BUFFER_TYPE MessageType;
419 USHORT LogonCount;
420 USHORT BadPasswordCount;
421 LARGE_INTEGER LogonTime;
422 LARGE_INTEGER LogoffTime;
423 LARGE_INTEGER KickOffTime;
424 LARGE_INTEGER PasswordLastSet;
425 LARGE_INTEGER PasswordCanChange;
426 LARGE_INTEGER PasswordMustChange;
427 UNICODE_STRING LogonScript;
428 UNICODE_STRING HomeDirectory;
429 UNICODE_STRING FullName;
430 UNICODE_STRING ProfilePath;
431 UNICODE_STRING HomeDirectoryDrive;
432 UNICODE_STRING LogonServer;
433 ULONG UserFlags;
434 } MSV1_0_INTERACTIVE_PROFILE, *PMSV1_0_INTERACTIVE_PROFILE;
435 typedef struct _MSV1_0_LM20_LOGON {
436 MSV1_0_LOGON_SUBMIT_TYPE MessageType;
437 UNICODE_STRING LogonDomainName;
438 UNICODE_STRING UserName;
439 UNICODE_STRING Workstation;
440 UCHAR ChallengeToClient[MSV1_0_CHALLENGE_LENGTH];
441 STRING CaseSensitiveChallengeResponse;
442 STRING CaseInsensitiveChallengeResponse;
443 ULONG ParameterControl;
444 } MSV1_0_LM20_LOGON, * PMSV1_0_LM20_LOGON;
445 typedef struct _MSV1_0_SUBAUTH_LOGON{ /* W2K only */
446 MSV1_0_LOGON_SUBMIT_TYPE MessageType;
447 UNICODE_STRING LogonDomainName;
448 UNICODE_STRING UserName;
449 UNICODE_STRING Workstation;
450 UCHAR ChallengeToClient[MSV1_0_CHALLENGE_LENGTH];
451 STRING AuthenticationInfo1;
452 STRING AuthenticationInfo2;
453 ULONG ParameterControl;
454 ULONG SubAuthPackageId;
455 } MSV1_0_SUBAUTH_LOGON, * PMSV1_0_SUBAUTH_LOGON;
456 typedef struct _MSV1_0_LM20_LOGON_PROFILE {
457 MSV1_0_PROFILE_BUFFER_TYPE MessageType;
458 LARGE_INTEGER KickOffTime;
459 LARGE_INTEGER LogoffTime;
460 ULONG UserFlags;
461 UCHAR UserSessionKey[MSV1_0_USER_SESSION_KEY_LENGTH];
462 UNICODE_STRING LogonDomainName;
463 UCHAR LanmanSessionKey[MSV1_0_LANMAN_SESSION_KEY_LENGTH];
464 UNICODE_STRING LogonServer;
465 UNICODE_STRING UserParameters;
466 } MSV1_0_LM20_LOGON_PROFILE, * PMSV1_0_LM20_LOGON_PROFILE;
467 typedef struct _MSV1_0_SUPPLEMENTAL_CREDENTIAL {
468 ULONG Version;
469 ULONG Flags;
470 UCHAR LmPassword[MSV1_0_OWF_PASSWORD_LENGTH];
471 UCHAR NtPassword[MSV1_0_OWF_PASSWORD_LENGTH];
472 } MSV1_0_SUPPLEMENTAL_CREDENTIAL, *PMSV1_0_SUPPLEMENTAL_CREDENTIAL;
473 typedef struct _MSV1_0_NTLM3_RESPONSE {
474 UCHAR Response[MSV1_0_NTLM3_RESPONSE_LENGTH];
475 UCHAR RespType;
476 UCHAR HiRespType;
477 USHORT Flags;
478 ULONG MsgWord;
479 ULONGLONG TimeStamp;
480 UCHAR ChallengeFromClient[MSV1_0_CHALLENGE_LENGTH];
481 ULONG AvPairsOff;
482 UCHAR Buffer[1];
483 } MSV1_0_NTLM3_RESPONSE, *PMSV1_0_NTLM3_RESPONSE;
484 typedef struct _MSV1_0_AV_PAIR {
485 USHORT AvId;
486 USHORT AvLen;
487 } MSV1_0_AV_PAIR, *PMSV1_0_AV_PAIR;
488 typedef struct _MSV1_0_CHANGEPASSWORD_REQUEST {
489 MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
490 UNICODE_STRING DomainName;
491 UNICODE_STRING AccountName;
492 UNICODE_STRING OldPassword;
493 UNICODE_STRING NewPassword;
494 BOOLEAN Impersonating;
495 } MSV1_0_CHANGEPASSWORD_REQUEST, *PMSV1_0_CHANGEPASSWORD_REQUEST;
496 typedef struct _MSV1_0_CHANGEPASSWORD_RESPONSE {
497 MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
498 BOOLEAN PasswordInfoValid;
499 DOMAIN_PASSWORD_INFORMATION DomainPasswordInfo;
500 } MSV1_0_CHANGEPASSWORD_RESPONSE, *PMSV1_0_CHANGEPASSWORD_RESPONSE;
501 typedef struct _MSV1_0_SUBAUTH_REQUEST{
502 MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
503 ULONG SubAuthPackageId;
504 ULONG SubAuthInfoLength;
505 PUCHAR SubAuthSubmitBuffer;
506 } MSV1_0_SUBAUTH_REQUEST, *PMSV1_0_SUBAUTH_REQUEST;
507 typedef struct _MSV1_0_SUBAUTH_RESPONSE{
508 MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
509 ULONG SubAuthInfoLength;
510 PUCHAR SubAuthReturnBuffer;
511 } MSV1_0_SUBAUTH_RESPONSE, *PMSV1_0_SUBAUTH_RESPONSE;
512 #define MSV1_0_DERIVECRED_TYPE_SHA1 0
513 typedef struct _MSV1_0_DERIVECRED_REQUEST {
514 MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
515 LUID LogonId;
516 ULONG DeriveCredType;
517 ULONG DeriveCredInfoLength;
518 UCHAR DeriveCredSubmitBuffer[1];
519 } MSV1_0_DERIVECRED_REQUEST, *PMSV1_0_DERIVECRED_REQUEST;
520 typedef struct _MSV1_0_DERIVECRED_RESPONSE {
521 MSV1_0_PROTOCOL_MESSAGE_TYPE MessageType;
522 ULONG DeriveCredInfoLength;
523 UCHAR DeriveCredReturnBuffer[1];
524 } MSV1_0_DERIVECRED_RESPONSE, *PMSV1_0_DERIVECRED_RESPONSE;
525 typedef ULONG POLICY_AUDIT_EVENT_OPTIONS, *PPOLICY_AUDIT_EVENT_OPTIONS;
526 typedef struct _POLICY_PRIVILEGE_DEFINITION {
527 LSA_UNICODE_STRING Name;
528 LUID LocalValue;
529 } POLICY_PRIVILEGE_DEFINITION, *PPOLICY_PRIVILEGE_DEFINITION;
530 typedef struct _POLICY_AUDIT_LOG_INFO {
531 ULONG AuditLogPercentFull;
532 ULONG MaximumLogSize;
533 LARGE_INTEGER AuditRetentionPeriod;
534 BOOLEAN AuditLogFullShutdownInProgress;
535 LARGE_INTEGER TimeToShutdown;
536 ULONG NextAuditRecordId;
537 } POLICY_AUDIT_LOG_INFO, *PPOLICY_AUDIT_LOG_INFO;
538 typedef struct _POLICY_AUDIT_EVENTS_INFO {
539 BOOLEAN AuditingMode;
540 PPOLICY_AUDIT_EVENT_OPTIONS EventAuditingOptions;
541 ULONG MaximumAuditEventCount;
542 } POLICY_AUDIT_EVENTS_INFO, *PPOLICY_AUDIT_EVENTS_INFO;
543 typedef struct _POLICY_ACCOUNT_DOMAIN_INFO {
544 LSA_UNICODE_STRING DomainName;
545 PSID DomainSid;
546 } POLICY_ACCOUNT_DOMAIN_INFO, *PPOLICY_ACCOUNT_DOMAIN_INFO;
547 typedef struct _POLICY_PRIMARY_DOMAIN_INFO {
548 LSA_UNICODE_STRING Name;
549 PSID Sid;
550 } POLICY_PRIMARY_DOMAIN_INFO, *PPOLICY_PRIMARY_DOMAIN_INFO;
551 typedef struct _POLICY_DNS_DOMAIN_INFO {
552 LSA_UNICODE_STRING Name;
553 LSA_UNICODE_STRING DnsDomainName;
554 LSA_UNICODE_STRING DnsForestName;
555 GUID DomainGuid;
556 PSID Sid;
557 } POLICY_DNS_DOMAIN_INFO, *PPOLICY_DNS_DOMAIN_INFO;
558 typedef struct _POLICY_PD_ACCOUNT_INFO {
559 LSA_UNICODE_STRING Name;
560 } POLICY_PD_ACCOUNT_INFO, *PPOLICY_PD_ACCOUNT_INFO;
561 typedef struct _POLICY_LSA_SERVER_ROLE_INFO {
562 POLICY_LSA_SERVER_ROLE LsaServerRole;
563 } POLICY_LSA_SERVER_ROLE_INFO, *PPOLICY_LSA_SERVER_ROLE_INFO;
564 typedef struct _POLICY_REPLICA_SOURCE_INFO {
565 LSA_UNICODE_STRING ReplicaSource;
566 LSA_UNICODE_STRING ReplicaAccountName;
567 } POLICY_REPLICA_SOURCE_INFO, *PPOLICY_REPLICA_SOURCE_INFO;
568 typedef struct _POLICY_DEFAULT_QUOTA_INFO {
569 QUOTA_LIMITS QuotaLimits;
570 } POLICY_DEFAULT_QUOTA_INFO, *PPOLICY_DEFAULT_QUOTA_INFO;
571 typedef struct _POLICY_MODIFICATION_INFO {
572 LARGE_INTEGER ModifiedId;
573 LARGE_INTEGER DatabaseCreationTime;
574 } POLICY_MODIFICATION_INFO, *PPOLICY_MODIFICATION_INFO;
575 typedef struct _POLICY_AUDIT_FULL_SET_INFO {
576 BOOLEAN ShutDownOnFull;
577 } POLICY_AUDIT_FULL_SET_INFO, *PPOLICY_AUDIT_FULL_SET_INFO;
578 typedef struct _POLICY_AUDIT_FULL_QUERY_INFO {
579 BOOLEAN ShutDownOnFull;
580 BOOLEAN LogIsFull;
581 } POLICY_AUDIT_FULL_QUERY_INFO, *PPOLICY_AUDIT_FULL_QUERY_INFO;
582 typedef struct _POLICY_EFS_INFO {
583 ULONG InfoLength;
584 PUCHAR EfsBlob;
585 } POLICY_EFS_INFO, *PPOLICY_EFS_INFO;
586 typedef struct _POLICY_LOCAL_IPSEC_REFERENCE_INFO {
587 LSA_UNICODE_STRING ObjectPath;
588 } POLICY_LOCAL_IPSEC_REFERENCE_INFO, *PPOLICY_LOCAL_IPSEC_REFERENCE_INFO;
589 typedef struct _POLICY_LOCAL_MACHINE_PASSWORD_INFO {
590 LARGE_INTEGER PasswordChangeInterval;
591 } POLICY_LOCAL_MACHINE_PASSWORD_INFO, *PPOLICY_LOCAL_MACHINE_PASSWORD_INFO;
592 typedef struct _POLICY_LOCAL_POLICY_LOCATION_INFO {
593 ULONG PolicyLocation;
594 } POLICY_LOCAL_POLICY_LOCATION_INFO, *PPOLICY_LOCAL_POLICY_LOCATION_INFO;
595 typedef struct _POLICY_LOCAL_QUALITY_OF_SERVICE_INFO {
596 ULONG QualityOfService;
597 } POLICY_LOCAL_QUALITY_OF_SERVICE_INFO, *PPOLICY_LOCAL_QUALITY_OF_SERVICE_INFO;
598 typedef struct _POLICY_LOCAL_QUALITY_OF_SERVICE_INFO POLICY_DOMAIN_QUALITY_OF_SERVICE_INFO;
599 typedef struct _POLICY_LOCAL_QUALITY_OF_SERVICE_INFO *PPOLICY_DOMAIN_QUALITY_OF_SERVICE_INFO;
600 typedef struct _POLICY_DOMAIN_PUBLIC_KEY_INFO {
601 ULONG InfoLength;
602 PUCHAR PublicKeyInfo;
603 } POLICY_DOMAIN_PUBLIC_KEY_INFO, *PPOLICY_DOMAIN_PUBLIC_KEY_INFO;
604 typedef struct _POLICY_DOMAIN_LOCKOUT_INFO {
605 LARGE_INTEGER LockoutDuration;
606 LARGE_INTEGER LockoutObservationWindow;
607 USHORT LockoutThreshold;
608 } POLICY_DOMAIN_LOCKOUT_INFO, *PPOLICY_DOMAIN_LOCKOUT_INFO;
609 typedef struct _POLICY_DOMAIN_PASSWORD_INFO {
610 USHORT MinPasswordLength;
611 USHORT PasswordHistoryLength;
612 ULONG PasswordProperties;
613 LARGE_INTEGER MaxPasswordAge;
614 LARGE_INTEGER MinPasswordAge;
615 } POLICY_DOMAIN_PASSWORD_INFO, *PPOLICY_DOMAIN_PASSWORD_INFO;
616 typedef struct _POLICY_DOMAIN_KERBEROS_TICKET_INFO {
617 ULONG AuthenticationOptions;
618 LARGE_INTEGER MinTicketAge;
619 LARGE_INTEGER MaxTicketAge;
620 LARGE_INTEGER MaxRenewAge;
621 LARGE_INTEGER ProxyLifetime;
622 LARGE_INTEGER ForceLogoff;
623 } POLICY_DOMAIN_KERBEROS_TICKET_INFO, *PPOLICY_DOMAIN_KERBEROS_TICKET_INFO;
624 typedef PVOID LSA_HANDLE, *PLSA_HANDLE;
625 typedef struct _TRUSTED_DOMAIN_NAME_INFO {
626 LSA_UNICODE_STRING Name;
627 } TRUSTED_DOMAIN_NAME_INFO, *PTRUSTED_DOMAIN_NAME_INFO;
628 typedef struct _TRUSTED_CONTROLLERS_INFO {
629 ULONG Entries;
630 PLSA_UNICODE_STRING Names;
631 } TRUSTED_CONTROLLERS_INFO, *PTRUSTED_CONTROLLERS_INFO;
632 typedef struct _TRUSTED_POSIX_OFFSET_INFO {
633 ULONG Offset;
634 } TRUSTED_POSIX_OFFSET_INFO, *PTRUSTED_POSIX_OFFSET_INFO;
635 typedef struct _TRUSTED_PASSWORD_INFO {
636 LSA_UNICODE_STRING Password;
637 LSA_UNICODE_STRING OldPassword;
638 } TRUSTED_PASSWORD_INFO, *PTRUSTED_PASSWORD_INFO;
639 typedef LSA_TRUST_INFORMATION TRUSTED_DOMAIN_INFORMATION_BASIC;
640 typedef PLSA_TRUST_INFORMATION *PTRUSTED_DOMAIN_INFORMATION_BASIC;
641 typedef struct _TRUSTED_DOMAIN_INFORMATION_EX {
642 LSA_UNICODE_STRING Name;
643 LSA_UNICODE_STRING FlatName;
644 PSID Sid;
645 ULONG TrustDirection;
646 ULONG TrustType;
647 ULONG TrustAttributes;
648 } TRUSTED_DOMAIN_INFORMATION_EX, *PTRUSTED_DOMAIN_INFORMATION_EX;
649 typedef struct _LSA_AUTH_INFORMATION {
650 LARGE_INTEGER LastUpdateTime;
651 ULONG AuthType;
652 ULONG AuthInfoLength;
653 PUCHAR AuthInfo;
654 } LSA_AUTH_INFORMATION, *PLSA_AUTH_INFORMATION;
655 typedef struct _TRUSTED_DOMAIN_AUTH_INFORMATION {
656 ULONG IncomingAuthInfos;
657 PLSA_AUTH_INFORMATION IncomingAuthenticationInformation;
658 PLSA_AUTH_INFORMATION IncomingPreviousAuthenticationInformation;
659 ULONG OutgoingAuthInfos;
660 PLSA_AUTH_INFORMATION OutgoingAuthenticationInformation;
661 PLSA_AUTH_INFORMATION OutgoingPreviousAuthenticationInformation;
662 } TRUSTED_DOMAIN_AUTH_INFORMATION, *PTRUSTED_DOMAIN_AUTH_INFORMATION;
663 typedef struct _TRUSTED_DOMAIN_FULL_INFORMATION {
664 TRUSTED_DOMAIN_INFORMATION_EX Information;
665 TRUSTED_POSIX_OFFSET_INFO PosixOffset;
666 TRUSTED_DOMAIN_AUTH_INFORMATION AuthInformation;
667 } TRUSTED_DOMAIN_FULL_INFORMATION, *PTRUSTED_DOMAIN_FULL_INFORMATION;
668
669 #define RtlGenRandom SystemFunction036
670
671 BOOLEAN WINAPI RtlGenRandom(PVOID,ULONG);
672
673 NTSTATUS NTAPI LsaAddAccountRights(LSA_HANDLE,PSID,PLSA_UNICODE_STRING,ULONG);
674 NTSTATUS NTAPI LsaCallAuthenticationPackage(HANDLE,ULONG,PVOID,ULONG,PVOID*,
675 PULONG,PNTSTATUS);
676 NTSTATUS NTAPI LsaClose(LSA_HANDLE);
677 NTSTATUS NTAPI LsaConnectUntrusted(PHANDLE);
678 NTSTATUS NTAPI LsaCreateTrustedDomainEx(LSA_HANDLE,
679 PTRUSTED_DOMAIN_INFORMATION_EX,
680 PTRUSTED_DOMAIN_AUTH_INFORMATION,ACCESS_MASK,
681 PLSA_HANDLE);
682 NTSTATUS NTAPI LsaDeleteTrustedDomain(LSA_HANDLE,PSID);
683 NTSTATUS NTAPI LsaDeregisterLogonProcess(HANDLE);
684 NTSTATUS NTAPI LsaEnumerateAccountRights(LSA_HANDLE,PSID,PLSA_UNICODE_STRING*,PULONG);
685 NTSTATUS NTAPI LsaEnumerateAccountsWithUserRight(LSA_HANDLE,PLSA_UNICODE_STRING,
686 PVOID*,PULONG);
687 NTSTATUS NTAPI LsaEnumerateTrustedDomains(LSA_HANDLE,PLSA_ENUMERATION_HANDLE,
688 PVOID*,ULONG,PULONG);
689 NTSTATUS NTAPI LsaEnumerateTrustedDomainsEx(LSA_HANDLE,PLSA_ENUMERATION_HANDLE,
690 PVOID*,ULONG,PULONG);
691 NTSTATUS NTAPI LsaFreeMemory(PVOID);
692 NTSTATUS NTAPI LsaFreeReturnBuffer(PVOID);
693 NTSTATUS NTAPI LsaLogonUser(HANDLE,PLSA_STRING,SECURITY_LOGON_TYPE,ULONG,PVOID,
694 ULONG,PTOKEN_GROUPS,PTOKEN_SOURCE,PVOID*,PULONG,
695 PLUID,PHANDLE,PQUOTA_LIMITS,PNTSTATUS);
696 NTSTATUS NTAPI LsaLookupAuthenticationPackage(HANDLE,PLSA_STRING,PULONG);
697 NTSTATUS NTAPI LsaLookupNames(LSA_HANDLE,ULONG,PLSA_UNICODE_STRING,
698 PLSA_REFERENCED_DOMAIN_LIST*,PLSA_TRANSLATED_SID*);
699 NTSTATUS NTAPI LsaLookupNames2(LSA_HANDLE,ULONG,ULONG,PLSA_UNICODE_STRING,
700 PLSA_REFERENCED_DOMAIN_LIST*,PLSA_TRANSLATED_SID2*);
701 NTSTATUS NTAPI LsaLookupSids(LSA_HANDLE,ULONG,PSID*,
702 PLSA_REFERENCED_DOMAIN_LIST*,PLSA_TRANSLATED_NAME*);
703 ULONG NTAPI LsaNtStatusToWinError(NTSTATUS);
704 NTSTATUS NTAPI LsaOpenPolicy(PLSA_UNICODE_STRING,PLSA_OBJECT_ATTRIBUTES,
705 ACCESS_MASK,PLSA_HANDLE);
706 NTSTATUS NTAPI LsaQueryDomainInformationPolicy(LSA_HANDLE,
707 POLICY_DOMAIN_INFORMATION_CLASS,PVOID*);
708 NTSTATUS NTAPI LsaQueryInformationPolicy(LSA_HANDLE,POLICY_INFORMATION_CLASS,PVOID*);
709 NTSTATUS NTAPI LsaQueryLocalInformationPolicy(LSA_HANDLE,
710 POLICY_LOCAL_INFORMATION_CLASS,PVOID*);
711 NTSTATUS NTAPI LsaQueryTrustedDomainInfo(LSA_HANDLE,PSID,
712 TRUSTED_INFORMATION_CLASS,PVOID*);
713 NTSTATUS NTAPI LsaQueryTrustedDomainInfoByName(LSA_HANDLE,PLSA_UNICODE_STRING,
714 TRUSTED_INFORMATION_CLASS,PVOID*);
715 NTSTATUS NTAPI LsaRegisterLogonProcess(PLSA_STRING,PHANDLE,PLSA_OPERATIONAL_MODE);
716 NTSTATUS NTAPI LsaRemoveAccountRights(LSA_HANDLE,PSID,BOOLEAN,
717 PLSA_UNICODE_STRING,ULONG);
718 NTSTATUS NTAPI LsaRetrievePrivateData(LSA_HANDLE,PLSA_UNICODE_STRING,
719 PLSA_UNICODE_STRING*);
720 NTSTATUS NTAPI LsaSetDomainInformationPolicy(LSA_HANDLE,
721 POLICY_DOMAIN_INFORMATION_CLASS,PVOID);
722 NTSTATUS NTAPI LsaSetInformationPolicy(LSA_HANDLE,POLICY_INFORMATION_CLASS, PVOID);
723 NTSTATUS NTAPI LsaSetLocalInformationPolicy(LSA_HANDLE,
724 POLICY_LOCAL_INFORMATION_CLASS,PVOID);
725 NTSTATUS NTAPI LsaSetTrustedDomainInformation(LSA_HANDLE,PSID,
726 TRUSTED_INFORMATION_CLASS,PVOID);
727 NTSTATUS NTAPI LsaSetTrustedDomainInfoByName(LSA_HANDLE,PLSA_UNICODE_STRING,
728 TRUSTED_INFORMATION_CLASS,PVOID);
729 NTSTATUS NTAPI LsaStorePrivateData(LSA_HANDLE,PLSA_UNICODE_STRING,
730 PLSA_UNICODE_STRING);
731 typedef NTSTATUS (NTAPI *PSAM_PASSWORD_NOTIFICATION_ROUTINE)(PUNICODE_STRING,
732 ULONG,PUNICODE_STRING);
733 typedef BOOLEAN (NTAPI *PSAM_INIT_NOTIFICATION_ROUTINE)(void);
734 typedef BOOLEAN (NTAPI *PSAM_PASSWORD_FILTER_ROUTINE)(PUNICODE_STRING,PUNICODE_STRING,
735 PUNICODE_STRING,BOOLEAN);
736 #ifdef __cplusplus
737 }
738 #endif
739 #endif /* _NTSECAPI_H */
A free Windows-compatible Operating System