2.2.3.2.3 Security Property Collection
The Security Property Collection structure is used to specify an array of Security Property (section 2.2.3.2.1) structures. It consists of a collection header followed by the Security Property structures.
|
|
|
|
|
|
|
|
|
|
1 |
|
|
|
|
|
|
|
|
|
2 |
|
|
|
|
|
|
|
|
|
3 |
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Header |
|||||||||||||||||||||||||||||||
|
Properties (variable) |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
Header (4 bytes): A Security Property Collection Header (section 2.2.3.2.2).
Properties (variable): An array of Security Property structures. The number of elements in the array MUST be specified in the cProperties field of Header.
If the collectionType field of the Header has a value of 0x0a01, the Properties array SHOULD contain a single element with the PropertyType field value set to 0x0b10, specifying the minimum RPC authentication level used across the ORPC call chain.
If the collectionType field of the Header has a value of 0x0a02, the Properties array SHOULD contain at least 4 elements with the PropertyType values set to 0x0b01, 0x0b03, 0x0b04 and 0x0b05, specifying, respectively, the SID, the authentication service, the authentication level, and the impersonation level used in the ORPC call.
If the collectionType field of the Header has a value of 0x0a02 and if the ORPC call crosses a domain boundary, the Properties array SHOULD contain an additional element with the PropertyType value set to 0x0b02, specifying the Windows NT account name of the caller.
Otherwise, if the collectionType field of the Header has a value of 0x0a02, if the ORPC call crosses a computer boundary and if the security identity of the client is scoped to the local computer, the Properties array SHOULD contain an additional element with the PropertyType value set to 0x0b02, specifying the Windows NT account name of the caller.