2.1 Transport

This protocol MUST use the following remote procedure call (RPC) protocol sequence: RPC over SMB (ncacn_np), as specified in [MS-RPCE].

This protocol uses the following well-known endpoints. These endpoints are pipe names for RPC over SMB, as specified in [MS-RPCE]:

• \PIPE\lsarpc

A server MUST listen on RPC over the above-named pipe. A client MUST only attempt to connect to this protocol via RPC over the above-named pipe.<2>

For authentication and authorization services, both the requestor and responder of this protocol MUST use the SMB transport to communicate the identity of the requestor, as specified in [MS-SMB] section 3.2.4.2.4.

The requestor MUST NOT use the RPC-provided security-support-provider mechanisms (for authentication, authorization, confidentiality, or tamper-resistance services).

This protocol MUST use this universally unique identifier (UUID) interface (3919286a-b10c-11d0-9ba8-00c04fd92ef5). The interface version number is 0.0.