12 [ uuid(
"12345778-1234-abcd-ef00-0123456789ac"),
14 endpoint(
"ncacn_np:[\\pipe\\samr]",
"ncacn_ip_tcp:",
"ncalrpc:"),
15 pointer_default(unique)
19 typedef [
public]
struct {
21 [size_is(count)] lsa_String *names;
25 typedef [v1_enum]
enum {
26 SID_NAME_USE_NONE = 0,
38 typedef [
public,v1_enum]
enum {
39 SAMR_REJECT_OTHER = 0,
40 SAMR_REJECT_TOO_SHORT = 1,
41 SAMR_REJECT_IN_HISTORY = 2,
42 SAMR_REJECT_COMPLEXITY = 5
48 typedef [
public,bitmap32bit] bitmap {
49 ACB_DISABLED = 0x00000001,
50 ACB_HOMDIRREQ = 0x00000002,
51 ACB_PWNOTREQ = 0x00000004,
52 ACB_TEMPDUP = 0x00000008,
53 ACB_NORMAL = 0x00000010,
55 ACB_DOMTRUST = 0x00000040,
56 ACB_WSTRUST = 0x00000080,
57 ACB_SVRTRUST = 0x00000100,
58 ACB_PWNOEXP = 0x00000200,
59 ACB_AUTOLOCK = 0x00000400,
60 ACB_ENC_TXT_PWD_ALLOWED = 0x00000800,
61 ACB_SMARTCARD_REQUIRED = 0x00001000,
62 ACB_TRUSTED_FOR_DELEGATION = 0x00002000,
63 ACB_NOT_DELEGATED = 0x00004000,
64 ACB_USE_DES_KEY_ONLY = 0x00008000,
65 ACB_DONT_REQUIRE_PREAUTH = 0x00010000,
66 ACB_PW_EXPIRED = 0x00020000,
67 ACB_TRUST_AUTH_DELEGAT = 0x00040000,
68 ACB_NO_AUTH_DATA_REQD = 0x00080000
73 typedef [bitmap32bit] bitmap {
74 SAMR_ACCESS_CONNECT_TO_SERVER = 0x00000001,
75 SAMR_ACCESS_SHUTDOWN_SERVER = 0x00000002,
76 SAMR_ACCESS_INITIALIZE_SERVER = 0x00000004,
77 SAMR_ACCESS_CREATE_DOMAIN = 0x00000008,
78 SAMR_ACCESS_ENUM_DOMAINS = 0x00000010,
79 SAMR_ACCESS_LOOKUP_DOMAIN = 0x00000020
80 } samr_ConnectAccessMask;
82 const int SAMR_ACCESS_ALL_ACCESS = 0x0000003F;
84 const int GENERIC_RIGHTS_SAM_ALL_ACCESS =
85 (STANDARD_RIGHTS_REQUIRED_ACCESS |
86 SAMR_ACCESS_ALL_ACCESS);
88 const int GENERIC_RIGHTS_SAM_READ =
89 (STANDARD_RIGHTS_READ_ACCESS |
90 SAMR_ACCESS_ENUM_DOMAINS);
92 const int GENERIC_RIGHTS_SAM_WRITE =
93 (STANDARD_RIGHTS_WRITE_ACCESS |
94 SAMR_ACCESS_CREATE_DOMAIN |
95 SAMR_ACCESS_INITIALIZE_SERVER |
96 SAMR_ACCESS_SHUTDOWN_SERVER);
98 const int GENERIC_RIGHTS_SAM_EXECUTE =
99 (STANDARD_RIGHTS_EXECUTE_ACCESS |
100 SAMR_ACCESS_LOOKUP_DOMAIN |
101 SAMR_ACCESS_CONNECT_TO_SERVER);
105 typedef [bitmap32bit] bitmap {
106 SAMR_USER_ACCESS_GET_NAME_ETC = 0x00000001,
107 SAMR_USER_ACCESS_GET_LOCALE = 0x00000002,
108 SAMR_USER_ACCESS_SET_LOC_COM = 0x00000004,
109 SAMR_USER_ACCESS_GET_LOGONINFO = 0x00000008,
110 SAMR_USER_ACCESS_GET_ATTRIBUTES = 0x00000010,
111 SAMR_USER_ACCESS_SET_ATTRIBUTES = 0x00000020,
112 SAMR_USER_ACCESS_CHANGE_PASSWORD = 0x00000040,
113 SAMR_USER_ACCESS_SET_PASSWORD = 0x00000080,
114 SAMR_USER_ACCESS_GET_GROUPS = 0x00000100,
115 SAMR_USER_ACCESS_GET_GROUP_MEMBERSHIP = 0x00000200,
116 SAMR_USER_ACCESS_CHANGE_GROUP_MEMBERSHIP = 0x00000400
117 } samr_UserAccessMask;
119 typedef [bitmap32bit] bitmap {
120 SAMR_DOMAIN_ACCESS_LOOKUP_INFO_1 = 0x00000001,
121 SAMR_DOMAIN_ACCESS_SET_INFO_1 = 0x00000002,
122 SAMR_DOMAIN_ACCESS_LOOKUP_INFO_2 = 0x00000004,
123 SAMR_DOMAIN_ACCESS_SET_INFO_2 = 0x00000008,
124 SAMR_DOMAIN_ACCESS_CREATE_USER = 0x00000010,
125 SAMR_DOMAIN_ACCESS_CREATE_GROUP = 0x00000020,
126 SAMR_DOMAIN_ACCESS_CREATE_ALIAS = 0x00000040,
127 SAMR_DOMAIN_ACCESS_LOOKUP_ALIAS = 0x00000080,
128 SAMR_DOMAIN_ACCESS_ENUM_ACCOUNTS = 0x00000100,
129 SAMR_DOMAIN_ACCESS_OPEN_ACCOUNT = 0x00000200,
130 SAMR_DOMAIN_ACCESS_SET_INFO_3 = 0x00000400
131 } samr_DomainAccessMask;
133 typedef [bitmap32bit] bitmap {
134 SAMR_GROUP_ACCESS_LOOKUP_INFO = 0x00000001,
135 SAMR_GROUP_ACCESS_SET_INFO = 0x00000002,
136 SAMR_GROUP_ACCESS_ADD_MEMBER = 0x00000004,
137 SAMR_GROUP_ACCESS_REMOVE_MEMBER = 0x00000008,
138 SAMR_GROUP_ACCESS_GET_MEMBERS = 0x00000010
139 } samr_GroupAccessMask;
141 const int SAMR_GROUP_ACCESS_MASK_INVALID = 0x0000ffe0;
143 const int SAMR_GROUP_ACCESS_ALL_ACCESS = 0x000f001f;
144 const int SAMR_GROUP_ACCESS_ALL_READ = 0x00020010;
145 const int SAMR_GROUP_ACCESS_ALL_WRITE = 0x0002000e;
146 const int SAMR_GROUP_ACCESS_ALL_EXECUTE = 0x00020001;
148 typedef [bitmap32bit] bitmap {
149 SAMR_ALIAS_ACCESS_ADD_MEMBER = 0x00000001,
150 SAMR_ALIAS_ACCESS_REMOVE_MEMBER = 0x00000002,
151 SAMR_ALIAS_ACCESS_GET_MEMBERS = 0x00000004,
152 SAMR_ALIAS_ACCESS_LOOKUP_INFO = 0x00000008,
153 SAMR_ALIAS_ACCESS_SET_INFO = 0x00000010
154 } samr_AliasAccessMask;
158 NTSTATUS samr_Connect (
160 [in,unique] uint16 *system_name,
161 [in] samr_ConnectAccessMask access_mask,
162 [out,ref] policy_handle *connect_handle
168 [
public] NTSTATUS samr_Close (
169 [in,out,ref] policy_handle *handle
175 NTSTATUS samr_SetSecurity (
176 [in,ref] policy_handle *handle,
177 [in] security_secinfo sec_info,
178 [in,ref] sec_desc_buf *sdbuf
184 NTSTATUS samr_QuerySecurity (
185 [in,ref] policy_handle *handle,
186 [in] security_secinfo sec_info,
187 [out,ref] sec_desc_buf **sdbuf
196 NTSTATUS samr_Shutdown (
197 [in,ref] policy_handle *connect_handle
202 NTSTATUS samr_LookupDomain (
203 [in,ref] policy_handle *connect_handle,
204 [in,ref] lsa_String *domain_name,
205 [out,ref] dom_sid2 **sid
219 [size_is(count)] samr_SamEntry *entries;
222 NTSTATUS samr_EnumDomains (
223 [in,ref] policy_handle *connect_handle,
224 [in,out,ref] uint32 *resume_handle,
225 [out,ref] samr_SamArray **sam,
226 [in] uint32 buf_size,
227 [out,ref] uint32 *num_entries
233 [
public] NTSTATUS samr_OpenDomain(
234 [in,ref] policy_handle *connect_handle,
235 [in] samr_DomainAccessMask access_mask,
236 [in,ref] dom_sid2 *sid,
237 [out,ref] policy_handle *domain_handle
244 DomainPasswordInformation = 1,
245 DomainGeneralInformation = 2,
246 DomainLogoffInformation = 3,
247 DomainOemInformation = 4,
248 DomainNameInformation = 5,
249 DomainReplicationInformation = 6,
250 DomainServerRoleInformation = 7,
251 DomainModifiedInformation = 8,
252 DomainStateInformation = 9,
253 DomainUasInformation = 10,
254 DomainGeneralInformation2 = 11,
255 DomainLockoutInformation = 12,
256 DomainModifiedInformation2 = 13
257 } samr_DomainInfoClass;
260 typedef [v1_enum]
enum {
261 SAMR_ROLE_STANDALONE = 0,
262 SAMR_ROLE_DOMAIN_MEMBER = 1,
263 SAMR_ROLE_DOMAIN_BDC = 2,
264 SAMR_ROLE_DOMAIN_PDC = 3
268 typedef [
public,bitmap32bit] bitmap {
269 DOMAIN_PASSWORD_COMPLEX = 0x00000001,
270 DOMAIN_PASSWORD_NO_ANON_CHANGE = 0x00000002,
271 DOMAIN_PASSWORD_NO_CLEAR_CHANGE = 0x00000004,
272 DOMAIN_PASSWORD_LOCKOUT_ADMINS = 0x00000008,
273 DOMAIN_PASSWORD_STORE_CLEARTEXT = 0x00000010,
274 DOMAIN_REFUSE_PASSWORD_CHANGE = 0x00000020
275 } samr_PasswordProperties;
277 typedef [v1_enum]
enum {
278 DOMAIN_SERVER_ENABLED = 1,
279 DOMAIN_SERVER_DISABLED = 2
280 } samr_DomainServerState;
283 uint16 min_password_length;
284 uint16 password_history_length;
285 samr_PasswordProperties password_properties;
287 dlong max_password_age;
288 dlong min_password_age;
292 NTTIME force_logoff_time;
293 lsa_String oem_information;
294 lsa_String domain_name;
297 samr_DomainServerState domain_server_state;
303 } samr_DomGeneralInformation;
306 NTTIME force_logoff_time;
310 lsa_String oem_information;
311 } samr_DomOEMInformation;
314 lsa_String domain_name;
327 NTTIME domain_create_time;
331 samr_DomainServerState domain_server_state;
335 samr_DomGeneralInformation general;
336 hyper lockout_duration;
337 hyper lockout_window;
338 uint16 lockout_threshold;
339 } samr_DomGeneralInformation2;
342 hyper lockout_duration;
343 hyper lockout_window;
344 uint16 lockout_threshold;
349 NTTIME domain_create_time;
350 hyper modified_count_at_last_promotion;
353 typedef [switch_type(uint16)]
union {
354 [
case(1)] samr_DomInfo1 info1;
355 [
case(2)] samr_DomGeneralInformation general;
356 [
case(3)] samr_DomInfo3 info3;
357 [
case(4)] samr_DomOEMInformation oem;
358 [
case(5)] samr_DomInfo5 info5;
359 [
case(6)] samr_DomInfo6 info6;
360 [
case(7)] samr_DomInfo7 info7;
361 [
case(8)] samr_DomInfo8 info8;
362 [
case(9)] samr_DomInfo9 info9;
363 [
case(11)] samr_DomGeneralInformation2 general2;
364 [
case(12)] samr_DomInfo12 info12;
365 [
case(13)] samr_DomInfo13 info13;
368 NTSTATUS samr_QueryDomainInfo(
369 [in,ref] policy_handle *domain_handle,
370 [in] samr_DomainInfoClass level,
371 [out,ref,switch_is(level)] samr_DomainInfo **
info 380 NTSTATUS samr_SetDomainInfo(
381 [in,ref] policy_handle *domain_handle,
382 [in] samr_DomainInfoClass level,
383 [in,switch_is(level),ref] samr_DomainInfo *
info 389 NTSTATUS samr_CreateDomainGroup(
390 [in,ref] policy_handle *domain_handle,
391 [in,ref] lsa_String *name,
392 [in] samr_GroupAccessMask access_mask,
393 [out,ref] policy_handle *group_handle,
394 [out,ref] uint32 *rid
400 NTSTATUS samr_EnumDomainGroups(
401 [in] policy_handle *domain_handle,
402 [in,out,ref] uint32 *resume_handle,
403 [out,ref] samr_SamArray **sam,
404 [in] uint32 max_size,
405 [out,ref] uint32 *num_entries
410 NTSTATUS samr_CreateUser(
411 [in,ref] policy_handle *domain_handle,
412 [in,ref] lsa_String *account_name,
413 [in] samr_UserAccessMask access_mask,
414 [out,ref] policy_handle *user_handle,
415 [out,ref] uint32 *rid
425 const int SAMR_ENUM_USERS_MULTIPLIER = 54;
427 NTSTATUS samr_EnumDomainUsers(
428 [in] policy_handle *domain_handle,
429 [in,out,ref] uint32 *resume_handle,
430 [in] samr_AcctFlags acct_flags,
431 [out,ref] samr_SamArray **sam,
432 [in] uint32 max_size,
433 [out,ref] uint32 *num_entries
438 NTSTATUS samr_CreateDomAlias(
439 [in,ref] policy_handle *domain_handle,
440 [in,ref] lsa_String *alias_name,
441 [in] samr_AliasAccessMask access_mask,
442 [out,ref] policy_handle *alias_handle,
443 [out,ref] uint32 *rid
448 NTSTATUS samr_EnumDomainAliases(
449 [in] policy_handle *domain_handle,
450 [in,out,ref] uint32 *resume_handle,
451 [out,ref] samr_SamArray **sam,
452 [in] uint32 max_size,
453 [out,ref] uint32 *num_entries
460 [range(0,1024)] uint32 count;
461 [size_is(count)] uint32 *ids;
464 NTSTATUS samr_GetAliasMembership(
465 [in,ref] policy_handle *domain_handle,
466 [in,ref] lsa_SidArray *sids,
467 [out,ref] samr_Ids *rids
473 [
public] NTSTATUS samr_LookupNames(
474 [in,ref] policy_handle *domain_handle,
475 [in,range(0,1000)] uint32 num_names,
476 [in,size_is(1000),length_is(num_names),ref] lsa_String *names,
477 [out,ref] samr_Ids *rids,
478 [out,ref] samr_Ids *types
484 NTSTATUS samr_LookupRids(
485 [in,ref] policy_handle *domain_handle,
486 [in,range(0,1000)] uint32 num_rids,
487 [in,size_is(1000),length_is(num_rids)] uint32 rids[],
488 [out,ref] lsa_Strings *names,
489 [out,ref] samr_Ids *types
494 NTSTATUS samr_OpenGroup(
495 [in,ref] policy_handle *domain_handle,
496 [in] samr_GroupAccessMask access_mask,
498 [out,ref] policy_handle *group_handle
502 typedef [
public,bitmap32bit] bitmap {
503 SE_GROUP_MANDATORY = 0x00000001,
504 SE_GROUP_ENABLED_BY_DEFAULT = 0x00000002,
505 SE_GROUP_ENABLED = 0x00000004,
506 SE_GROUP_OWNER = 0x00000008,
507 SE_GROUP_USE_FOR_DENY_ONLY = 0x00000010,
508 SE_GROUP_RESOURCE = 0x20000000,
509 SE_GROUP_LOGON_ID = 0xC0000000
517 samr_GroupAttrs attributes;
519 lsa_String description;
523 samr_GroupAttrs attributes;
524 } samr_GroupInfoAttributes;
527 lsa_String description;
528 } samr_GroupInfoDescription;
533 GROUPINFOATTRIBUTES = 3,
534 GROUPINFODESCRIPTION = 4,
536 } samr_GroupInfoEnum;
538 typedef [switch_type(samr_GroupInfoEnum)]
union {
539 [
case(GROUPINFOALL)] samr_GroupInfoAll all;
540 [
case(GROUPINFONAME)] lsa_String name;
541 [
case(GROUPINFOATTRIBUTES)] samr_GroupInfoAttributes attributes;
542 [
case(GROUPINFODESCRIPTION)] lsa_String description;
543 [
case(GROUPINFOALL2)] samr_GroupInfoAll all2;
546 NTSTATUS samr_QueryGroupInfo(
547 [in,ref] policy_handle *group_handle,
548 [in] samr_GroupInfoEnum level,
549 [out,ref,switch_is(level)] samr_GroupInfo **
info 554 NTSTATUS samr_SetGroupInfo(
555 [in,ref] policy_handle *group_handle,
556 [in] samr_GroupInfoEnum level,
557 [in,switch_is(level),ref] samr_GroupInfo *
info 562 NTSTATUS samr_AddGroupMember(
563 [in,ref] policy_handle *group_handle,
570 NTSTATUS samr_DeleteDomainGroup(
571 [in,out,ref] policy_handle *group_handle
576 NTSTATUS samr_DeleteGroupMember(
577 [in,ref] policy_handle *group_handle,
586 [size_is(count)] uint32 *rids;
587 [size_is(count)] uint32 *types;
590 NTSTATUS samr_QueryGroupMember(
591 [in,ref] policy_handle *group_handle,
592 [out,ref] samr_RidTypeArray **rids
605 NTSTATUS samr_SetMemberAttributesOfGroup(
606 [in,ref] policy_handle *group_handle,
607 [in] uint32 unknown1,
614 NTSTATUS samr_OpenAlias (
615 [in,ref] policy_handle *domain_handle,
616 [in] samr_AliasAccessMask access_mask,
618 [out,ref] policy_handle *alias_handle
628 lsa_String description;
634 ALIASINFODESCRIPTION = 3
635 } samr_AliasInfoEnum;
637 typedef [switch_type(samr_AliasInfoEnum)]
union {
638 [
case(ALIASINFOALL)] samr_AliasInfoAll all;
639 [
case(ALIASINFONAME)] lsa_String name;
640 [
case(ALIASINFODESCRIPTION)] lsa_String description;
643 NTSTATUS samr_QueryAliasInfo(
644 [in,ref] policy_handle *alias_handle,
645 [in] samr_AliasInfoEnum level,
646 [out,ref,switch_is(level)] samr_AliasInfo **
info 651 NTSTATUS samr_SetAliasInfo(
652 [in,ref] policy_handle *alias_handle,
653 [in] samr_AliasInfoEnum level,
654 [in,switch_is(level),ref] samr_AliasInfo *
info 659 NTSTATUS samr_DeleteDomAlias(
660 [in,out,ref] policy_handle *alias_handle
665 NTSTATUS samr_AddAliasMember(
666 [in,ref] policy_handle *alias_handle,
667 [in,ref] dom_sid2 *sid
672 NTSTATUS samr_DeleteAliasMember(
673 [in,ref] policy_handle *alias_handle,
674 [in,ref] dom_sid2 *sid
679 NTSTATUS samr_GetMembersInAlias(
680 [in,ref] policy_handle *alias_handle,
681 [out,ref] lsa_SidArray *sids
686 [
public] NTSTATUS samr_OpenUser(
687 [in,ref] policy_handle *domain_handle,
688 [in] samr_UserAccessMask access_mask,
690 [out,ref] policy_handle *user_handle
695 NTSTATUS samr_DeleteUser(
696 [in,out,ref] policy_handle *user_handle
703 UserGeneralInformation = 1,
704 UserPreferencesInformation = 2,
705 UserLogonInformation = 3,
706 UserLogonHoursInformation = 4,
707 UserAccountInformation = 5,
708 UserNameInformation = 6,
709 UserAccountNameInformation = 7,
710 UserFullNameInformation = 8,
711 UserPrimaryGroupInformation = 9,
712 UserHomeInformation = 10,
713 UserScriptInformation = 11,
714 UserProfileInformation = 12,
715 UserAdminCommentInformation = 13,
716 UserWorkStationsInformation = 14,
717 UserControlInformation = 16,
718 UserExpiresInformation = 17,
719 UserInternal1Information = 18,
720 UserParametersInformation = 20,
721 UserAllInformation = 21,
722 UserInternal4Information = 23,
723 UserInternal5Information = 24,
724 UserInternal4InformationNew = 25,
725 UserInternal5InformationNew = 26
726 } samr_UserInfoLevel;
729 lsa_String account_name;
730 lsa_String full_name;
732 lsa_String description;
744 typedef [
public, flag(NDR_PAHEX)]
struct {
745 uint16 units_per_week;
746 [size_is(1260), length_is(units_per_week/8)] uint8 *bits;
750 lsa_String account_name;
751 lsa_String full_name;
754 lsa_String home_directory;
755 lsa_String home_drive;
756 lsa_String logon_script;
757 lsa_String profile_path;
758 lsa_String workstations;
761 NTTIME last_password_change;
762 NTTIME allow_password_change;
763 NTTIME force_password_change;
764 samr_LogonHours logon_hours;
765 uint16 bad_password_count;
767 samr_AcctFlags acct_flags;
771 samr_LogonHours logon_hours;
775 lsa_String account_name;
776 lsa_String full_name;
779 lsa_String home_directory;
780 lsa_String home_drive;
781 lsa_String logon_script;
782 lsa_String profile_path;
783 lsa_String description;
784 lsa_String workstations;
787 samr_LogonHours logon_hours;
788 uint16 bad_password_count;
790 NTTIME last_password_change;
792 samr_AcctFlags acct_flags;
796 lsa_String account_name;
797 lsa_String full_name;
801 lsa_String account_name;
805 lsa_String full_name;
813 lsa_String home_directory;
814 lsa_String home_drive;
818 lsa_String logon_script;
822 lsa_String profile_path;
826 lsa_String description;
830 lsa_String workstations;
834 samr_AcctFlags acct_flags;
841 typedef [
public, flag(NDR_PAHEX)]
struct {
846 samr_Password nt_pwd;
847 samr_Password lm_pwd;
848 boolean8 nt_pwd_active;
849 boolean8 lm_pwd_active;
850 uint8 password_expired;
854 lsa_String parameters;
858 typedef [bitmap32bit] bitmap {
859 SAMR_FIELD_ACCOUNT_NAME = 0x00000001,
860 SAMR_FIELD_FULL_NAME = 0x00000002,
861 SAMR_FIELD_RID = 0x00000004,
862 SAMR_FIELD_PRIMARY_GID = 0x00000008,
863 SAMR_FIELD_DESCRIPTION = 0x00000010,
864 SAMR_FIELD_COMMENT = 0x00000020,
865 SAMR_FIELD_HOME_DIRECTORY = 0x00000040,
866 SAMR_FIELD_HOME_DRIVE = 0x00000080,
867 SAMR_FIELD_LOGON_SCRIPT = 0x00000100,
868 SAMR_FIELD_PROFILE_PATH = 0x00000200,
869 SAMR_FIELD_WORKSTATIONS = 0x00000400,
870 SAMR_FIELD_LAST_LOGON = 0x00000800,
871 SAMR_FIELD_LAST_LOGOFF = 0x00001000,
872 SAMR_FIELD_LOGON_HOURS = 0x00002000,
873 SAMR_FIELD_BAD_PWD_COUNT = 0x00004000,
874 SAMR_FIELD_NUM_LOGONS = 0x00008000,
875 SAMR_FIELD_ALLOW_PWD_CHANGE = 0x00010000,
876 SAMR_FIELD_FORCE_PWD_CHANGE = 0x00020000,
877 SAMR_FIELD_LAST_PWD_CHANGE = 0x00040000,
878 SAMR_FIELD_ACCT_EXPIRY = 0x00080000,
879 SAMR_FIELD_ACCT_FLAGS = 0x00100000,
880 SAMR_FIELD_PARAMETERS = 0x00200000,
881 SAMR_FIELD_COUNTRY_CODE = 0x00400000,
882 SAMR_FIELD_CODE_PAGE = 0x00800000,
883 SAMR_FIELD_NT_PASSWORD_PRESENT = 0x01000000,
884 SAMR_FIELD_LM_PASSWORD_PRESENT = 0x02000000,
885 SAMR_FIELD_PRIVATE_DATA = 0x04000000,
886 SAMR_FIELD_EXPIRED_FLAG = 0x08000000,
887 SAMR_FIELD_SEC_DESC = 0x10000000,
888 SAMR_FIELD_OWF_PWD = 0x20000000
889 } samr_FieldsPresent;
892 const int PASS_MUST_CHANGE_AT_NEXT_LOGON = 0x01;
893 const int PASS_DONT_CHANGE_AT_NEXT_LOGON = 0x00;
898 NTTIME last_password_change;
900 NTTIME allow_password_change;
901 NTTIME force_password_change;
902 lsa_String account_name;
903 lsa_String full_name;
904 lsa_String home_directory;
905 lsa_String home_drive;
906 lsa_String logon_script;
907 lsa_String profile_path;
908 lsa_String description;
909 lsa_String workstations;
911 lsa_String parameters;
912 lsa_String lm_password;
913 lsa_String nt_password;
916 [size_is(buf_count)] uint8 *
buffer;
919 samr_AcctFlags acct_flags;
920 samr_FieldsPresent fields_present;
921 samr_LogonHours logon_hours;
922 uint16 bad_password_count;
926 uint8 lm_password_set;
927 uint8 nt_password_set;
928 uint8 password_expired;
932 typedef [
public, flag(NDR_PAHEX)]
struct {
934 } samr_CryptPassword;
937 samr_UserInfo21
info;
938 samr_CryptPassword password;
942 samr_CryptPassword password;
943 uint8 password_expired;
946 typedef [flag(NDR_PAHEX)]
struct {
948 } samr_CryptPasswordEx;
951 samr_UserInfo21
info;
952 samr_CryptPasswordEx password;
956 samr_CryptPasswordEx password;
957 uint8 password_expired;
960 typedef [switch_type(uint16)]
union {
961 [
case(1)] samr_UserInfo1 info1;
962 [
case(2)] samr_UserInfo2 info2;
963 [
case(3)] samr_UserInfo3 info3;
964 [
case(4)] samr_UserInfo4 info4;
965 [
case(5)] samr_UserInfo5 info5;
966 [
case(6)] samr_UserInfo6 info6;
967 [
case(7)] samr_UserInfo7 info7;
968 [
case(8)] samr_UserInfo8 info8;
969 [
case(9)] samr_UserInfo9 info9;
970 [
case(10)] samr_UserInfo10 info10;
971 [
case(11)] samr_UserInfo11 info11;
972 [
case(12)] samr_UserInfo12 info12;
973 [
case(13)] samr_UserInfo13 info13;
974 [
case(14)] samr_UserInfo14 info14;
975 [
case(16)] samr_UserInfo16 info16;
976 [
case(17)] samr_UserInfo17 info17;
977 [
case(18)] samr_UserInfo18 info18;
978 [
case(20)] samr_UserInfo20 info20;
979 [
case(21)] samr_UserInfo21 info21;
980 [
case(23)] samr_UserInfo23 info23;
981 [
case(24)] samr_UserInfo24 info24;
982 [
case(25)] samr_UserInfo25 info25;
983 [
case(26)] samr_UserInfo26 info26;
986 [
public] NTSTATUS samr_QueryUserInfo(
987 [in,ref] policy_handle *user_handle,
988 [in] samr_UserInfoLevel level,
989 [out,ref,switch_is(level)] samr_UserInfo **
info 995 [
public] NTSTATUS samr_SetUserInfo(
996 [in,ref] policy_handle *user_handle,
997 [in] samr_UserInfoLevel level,
998 [in,ref,switch_is(level)] samr_UserInfo *
info 1007 NTSTATUS samr_ChangePasswordUser(
1008 [in,ref] policy_handle *user_handle,
1009 [in] boolean8 lm_present,
1010 [in,unique] samr_Password *old_lm_crypted,
1011 [in,unique] samr_Password *new_lm_crypted,
1012 [in] boolean8 nt_present,
1013 [in,unique] samr_Password *old_nt_crypted,
1014 [in,unique] samr_Password *new_nt_crypted,
1015 [in] boolean8 cross1_present,
1016 [in,unique] samr_Password *nt_cross,
1017 [in] boolean8 cross2_present,
1018 [in,unique] samr_Password *lm_cross
1024 typedef [
public]
struct {
1026 samr_GroupAttrs attributes;
1027 } samr_RidWithAttribute;
1029 typedef [
public]
struct {
1031 [size_is(count)] samr_RidWithAttribute *rids;
1032 } samr_RidWithAttributeArray;
1034 NTSTATUS samr_GetGroupsForUser(
1035 [in,ref] policy_handle *user_handle,
1036 [out,ref] samr_RidWithAttributeArray **rids
1045 samr_AcctFlags acct_flags;
1046 lsa_String account_name;
1047 lsa_String description;
1048 lsa_String full_name;
1049 } samr_DispEntryGeneral;
1053 [size_is(count)] samr_DispEntryGeneral *entries;
1054 } samr_DispInfoGeneral;
1059 samr_AcctFlags acct_flags;
1060 lsa_String account_name;
1061 lsa_String description;
1062 } samr_DispEntryFull;
1066 [size_is(count)] samr_DispEntryFull *entries;
1067 } samr_DispInfoFull;
1072 samr_GroupAttrs acct_flags;
1073 lsa_String account_name;
1074 lsa_String description;
1075 } samr_DispEntryFullGroup;
1079 [size_is(count)] samr_DispEntryFullGroup *entries;
1080 } samr_DispInfoFullGroups;
1084 lsa_AsciiStringLarge account_name;
1085 } samr_DispEntryAscii;
1089 [size_is(count)] samr_DispEntryAscii *entries;
1090 } samr_DispInfoAscii;
1093 SAMR_DOMAIN_DISPLAY_USER = 1,
1094 SAMR_DOMAIN_DISPLAY_MACHINE = 2,
1095 SAMR_DOMAIN_DISPLAY_GROUP = 3,
1096 SAMR_DOMAIN_DISPLAY_OEM_USER = 4,
1097 SAMR_DOMAIN_DISPLAY_OEM_GROUP = 5
1098 } samr_DomainDisplayInformation;
1100 typedef [switch_type(uint16)]
union {
1101 [
case(SAMR_DOMAIN_DISPLAY_USER)] samr_DispInfoGeneral info1;
1102 [
case(SAMR_DOMAIN_DISPLAY_MACHINE)] samr_DispInfoFull info2;
1103 [
case(SAMR_DOMAIN_DISPLAY_GROUP)] samr_DispInfoFullGroups info3;
1104 [
case(SAMR_DOMAIN_DISPLAY_OEM_USER)] samr_DispInfoAscii info4;
1105 [
case(SAMR_DOMAIN_DISPLAY_OEM_GROUP)] samr_DispInfoAscii info5;
1108 NTSTATUS samr_QueryDisplayInfo(
1109 [in,ref] policy_handle *domain_handle,
1110 [in] samr_DomainDisplayInformation level,
1111 [in] uint32 start_idx,
1112 [in] uint32 max_entries,
1113 [in] uint32 buf_size,
1114 [out,ref] uint32 *total_size,
1115 [out,ref] uint32 *returned_size,
1116 [out,ref,switch_is(level)] samr_DispInfo *
info 1132 NTSTATUS samr_GetDisplayEnumerationIndex(
1133 [in,ref] policy_handle *domain_handle,
1135 [in,ref] lsa_String *name,
1136 [out,ref] uint32 *idx
1147 NTSTATUS samr_TestPrivateFunctionsDomain(
1148 [in,ref] policy_handle *domain_handle
1158 NTSTATUS samr_TestPrivateFunctionsUser(
1159 [in,ref] policy_handle *user_handle
1167 uint16 min_password_length;
1168 samr_PasswordProperties password_properties;
1171 [
public] NTSTATUS samr_GetUserPwInfo(
1172 [in,ref] policy_handle *user_handle,
1173 [out,ref] samr_PwInfo *
info 1178 NTSTATUS samr_RemoveMemberFromForeignDomain(
1179 [in,ref] policy_handle *domain_handle,
1180 [in,ref] dom_sid2 *sid
1189 NTSTATUS samr_QueryDomainInfo2(
1190 [in,ref] policy_handle *domain_handle,
1191 [in] samr_DomainInfoClass level,
1192 [out,ref,switch_is(level)] samr_DomainInfo **
info 1201 NTSTATUS samr_QueryUserInfo2(
1202 [in,ref] policy_handle *user_handle,
1203 [in] samr_UserInfoLevel level,
1204 [out,ref,switch_is(level)] samr_UserInfo **
info 1213 NTSTATUS samr_QueryDisplayInfo2(
1214 [in,ref] policy_handle *domain_handle,
1215 [in] samr_DomainDisplayInformation level,
1216 [in] uint32 start_idx,
1217 [in] uint32 max_entries,
1218 [in] uint32 buf_size,
1219 [out,ref] uint32 *total_size,
1220 [out,ref] uint32 *returned_size,
1221 [out,ref,switch_is(level)] samr_DispInfo *
info 1230 NTSTATUS samr_GetDisplayEnumerationIndex2(
1231 [in,ref] policy_handle *domain_handle,
1232 [in] samr_DomainDisplayInformation level,
1233 [in,ref] lsa_String *name,
1234 [out,ref] uint32 *idx
1240 NTSTATUS samr_CreateUser2(
1241 [in,ref] policy_handle *domain_handle,
1242 [in,ref] lsa_String *account_name,
1243 [in] samr_AcctFlags acct_flags,
1244 [in] samr_UserAccessMask access_mask,
1245 [out,ref] policy_handle *user_handle,
1246 [out,ref] uint32 *access_granted,
1247 [out,ref] uint32 *rid
1257 NTSTATUS samr_QueryDisplayInfo3(
1258 [in,ref] policy_handle *domain_handle,
1259 [in] samr_DomainDisplayInformation level,
1260 [in] uint32 start_idx,
1261 [in] uint32 max_entries,
1262 [in] uint32 buf_size,
1263 [out,ref] uint32 *total_size,
1264 [out,ref] uint32 *returned_size,
1265 [out,ref,switch_is(level)] samr_DispInfo *
info 1270 NTSTATUS samr_AddMultipleMembersToAlias(
1271 [in,ref] policy_handle *alias_handle,
1272 [in,ref] lsa_SidArray *sids
1277 NTSTATUS samr_RemoveMultipleMembersFromAlias(
1278 [in,ref] policy_handle *alias_handle,
1279 [in,ref] lsa_SidArray *sids
1285 NTSTATUS samr_OemChangePasswordUser2(
1286 [in,unique] lsa_AsciiString *server,
1287 [in,ref] lsa_AsciiString *account,
1288 [in,unique] samr_CryptPassword *password,
1289 [in,unique] samr_Password *hash
1294 NTSTATUS samr_ChangePasswordUser2(
1295 [in,unique] lsa_String *server,
1296 [in,ref] lsa_String *account,
1297 [in,unique] samr_CryptPassword *nt_password,
1298 [in,unique] samr_Password *nt_verifier,
1299 [in] boolean8 lm_change,
1300 [in,unique] samr_CryptPassword *lm_password,
1301 [in,unique] samr_Password *lm_verifier
1306 NTSTATUS samr_GetDomPwInfo(
1307 [in,unique] lsa_String *domain_name,
1308 [out,ref] samr_PwInfo *
info 1313 NTSTATUS samr_Connect2(
1314 [in,unique,
string,charset(UTF16)] uint16 *system_name,
1315 [in] samr_ConnectAccessMask access_mask,
1316 [out,ref] policy_handle *connect_handle
1324 [
public] NTSTATUS samr_SetUserInfo2(
1325 [in,ref] policy_handle *user_handle,
1326 [in] samr_UserInfoLevel level,
1327 [in,ref,switch_is(level)] samr_UserInfo *
info 1335 NTSTATUS samr_SetBootKeyInformation(
1336 [in,ref] policy_handle *connect_handle,
1337 [in] uint32 unknown1,
1338 [in] uint32 unknown2,
1339 [in] uint32 unknown3
1344 NTSTATUS samr_GetBootKeyInformation(
1345 [in,ref] policy_handle *domain_handle,
1346 [out,ref] uint32 *unknown
1351 NTSTATUS samr_Connect3(
1352 [in,unique,
string,charset(UTF16)] uint16 *system_name,
1354 [in] uint32 unknown,
1355 [in] samr_ConnectAccessMask access_mask,
1356 [out,ref] policy_handle *connect_handle
1362 typedef [v1_enum]
enum {
1363 SAMR_CONNECT_PRE_W2K = 1,
1364 SAMR_CONNECT_W2K = 2,
1365 SAMR_CONNECT_AFTER_W2K = 3
1366 } samr_ConnectVersion;
1368 NTSTATUS samr_Connect4(
1369 [in,unique,
string,charset(UTF16)] uint16 *system_name,
1370 [in] samr_ConnectVersion client_version,
1371 [in] samr_ConnectAccessMask access_mask,
1372 [out,ref] policy_handle *connect_handle
1379 samr_RejectReason reason;
1382 } samr_ChangeReject;
1384 NTSTATUS samr_ChangePasswordUser3(
1385 [in,unique] lsa_String *server,
1386 [in,ref] lsa_String *account,
1387 [in,unique] samr_CryptPassword *nt_password,
1388 [in,unique] samr_Password *nt_verifier,
1389 [in] boolean8 lm_change,
1390 [in,unique] samr_CryptPassword *lm_password,
1391 [in,unique] samr_Password *lm_verifier,
1392 [in,unique] samr_CryptPassword *password3,
1393 [out,ref] samr_DomInfo1 **dominfo,
1394 [out,ref] samr_ChangeReject **reject
1401 samr_ConnectVersion client_version;
1403 } samr_ConnectInfo1;
1406 [
case(1)] samr_ConnectInfo1 info1;
1409 [
public] NTSTATUS samr_Connect5(
1410 [in,unique,
string,charset(UTF16)] uint16 *system_name,
1411 [in] samr_ConnectAccessMask access_mask,
1412 [in] uint32 level_in,
1413 [in,ref,switch_is(level_in)] samr_ConnectInfo *info_in,
1414 [out,ref] uint32 *level_out,
1415 [out,ref,switch_is(*level_out)] samr_ConnectInfo *info_out,
1416 [out,ref] policy_handle *connect_handle
1421 NTSTATUS samr_RidToSid(
1422 [in,ref] policy_handle *domain_handle,
1424 [out,ref] dom_sid2 **sid
1436 NTSTATUS samr_SetDsrmPassword(
1437 [in,unique] lsa_String *name,
1438 [in] uint32 unknown,
1439 [in,unique] samr_Password *hash
1446 typedef [bitmap32bit] bitmap {
1447 SAMR_VALIDATE_FIELD_PASSWORD_LAST_SET = 0x00000001,
1448 SAMR_VALIDATE_FIELD_BAD_PASSWORD_TIME = 0x00000002,
1449 SAMR_VALIDATE_FIELD_LOCKOUT_TIME = 0x00000004,
1450 SAMR_VALIDATE_FIELD_BAD_PASSWORD_COUNT = 0x00000008,
1451 SAMR_VALIDATE_FIELD_PASSWORD_HISTORY_LENGTH = 0x00000010,
1452 SAMR_VALIDATE_FIELD_PASSWORD_HISTORY = 0x00000020
1453 } samr_ValidateFieldsPresent;
1456 NetValidateAuthentication = 1,
1457 NetValidatePasswordChange= 2,
1458 NetValidatePasswordReset = 3
1459 } samr_ValidatePasswordLevel;
1470 SAMR_VALIDATION_STATUS_SUCCESS = 0,
1471 SAMR_VALIDATION_STATUS_PASSWORD_MUST_CHANGE = 1,
1472 SAMR_VALIDATION_STATUS_ACCOUNT_LOCKED_OUT = 2,
1473 SAMR_VALIDATION_STATUS_PASSWORD_EXPIRED = 3,
1474 SAMR_VALIDATION_STATUS_BAD_PASSWORD = 4,
1475 SAMR_VALIDATION_STATUS_PWD_HISTORY_CONFLICT = 5,
1476 SAMR_VALIDATION_STATUS_PWD_TOO_SHORT = 6,
1477 SAMR_VALIDATION_STATUS_PWD_TOO_LONG = 7,
1478 SAMR_VALIDATION_STATUS_NOT_COMPLEX_ENOUGH = 8,
1479 SAMR_VALIDATION_STATUS_PASSWORD_TOO_RECENT = 9,
1480 SAMR_VALIDATION_STATUS_PASSWORD_FILTER_ERROR = 10
1481 } samr_ValidationStatus;
1485 [size_is(length)] uint8 *data;
1486 } samr_ValidationBlob;
1489 samr_ValidateFieldsPresent fields_present;
1490 NTTIME_hyper last_password_change;
1491 NTTIME_hyper bad_password_time;
1492 NTTIME_hyper lockout_time;
1493 uint32 bad_pwd_count;
1494 uint32 pwd_history_len;
1495 [size_is(pwd_history_len)] samr_ValidationBlob *pwd_history;
1496 } samr_ValidatePasswordInfo;
1499 samr_ValidatePasswordInfo
info;
1500 samr_ValidationStatus status;
1501 } samr_ValidatePasswordRepCtr;
1503 typedef [switch_type(uint16)]
union {
1504 [
case(1)] samr_ValidatePasswordRepCtr ctr1;
1505 [
case(2)] samr_ValidatePasswordRepCtr ctr2;
1506 [
case(3)] samr_ValidatePasswordRepCtr ctr3;
1507 } samr_ValidatePasswordRep;
1510 samr_ValidatePasswordInfo
info;
1511 lsa_StringLarge password;
1512 lsa_StringLarge account;
1513 samr_ValidationBlob hash;
1514 boolean8 pwd_must_change_at_next_logon;
1515 boolean8 clear_lockout;
1516 } samr_ValidatePasswordReq3;
1519 samr_ValidatePasswordInfo
info;
1520 lsa_StringLarge password;
1521 lsa_StringLarge account;
1522 samr_ValidationBlob hash;
1523 boolean8 password_matched;
1524 } samr_ValidatePasswordReq2;
1527 samr_ValidatePasswordInfo
info;
1528 boolean8 password_matched;
1529 } samr_ValidatePasswordReq1;
1531 typedef [switch_type(uint16)]
union {
1532 [
case(1)] samr_ValidatePasswordReq1 req1;
1533 [
case(2)] samr_ValidatePasswordReq2 req2;
1534 [
case(3)] samr_ValidatePasswordReq3 req3;
1535 } samr_ValidatePasswordReq;
1537 NTSTATUS samr_ValidatePassword(
1538 [in] samr_ValidatePasswordLevel level,
1539 [in,switch_is(level)] samr_ValidatePasswordReq *req,
1540 [out,ref,switch_is(level)] samr_ValidatePasswordRep **rep
Definition: file-pcapng.c:177
Definition: conversation.c:27
Definition: mcast_stream.h:30