3 much of this was derived from the ethereal sources - thanks to everyone
7 import
"lsa.idl", "samr.idl", "security.idl";
12 uuid("12345678-1234-abcd-ef00-01234567cffb"),
14 endpoint("ncacn_np:[\\pipe\\netlogon]","ncacn_ip_tcp:","ncalrpc:"),
15 pointer_default(unique)
20 typedef bitmap samr_AcctFlags samr_AcctFlags
;
21 typedef bitmap samr_GroupAttrs samr_GroupAttrs
;
27 [string,charset
(UTF16
)] uint16
*account_name
;
38 time_t pw_must_change
;
39 [string,charset
(UTF16
)] uint16
*computer
;
40 [string,charset
(UTF16
)] uint16
*domain
;
41 [string,charset
(UTF16
)] uint16
*script_path
;
45 WERROR netr_LogonUasLogon
(
46 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
47 [in] [string,charset
(UTF16
)] uint16 account_name
[],
48 [in] [string,charset
(UTF16
)] uint16 workstation
[],
49 [out,ref] netr_UasInfo
*info
61 WERROR netr_LogonUasLogoff
(
62 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
63 [in] [string,charset
(UTF16
)] uint16 account_name
[],
64 [in] [string,charset
(UTF16
)] uint16 workstation
[],
65 [out,ref] netr_UasLogoffInfo
*info
72 /* in netr_AcctLockStr size seems to be be 24, and rrenard thinks
73 that the structure of the bindata looks like this:
75 dlong lockout_duration;
77 uint32 bad_attempt_lockout;
80 but it doesn't look as though this structure is reflected at the
81 NDR level. Maybe it is left to the application to decode the bindata array.
86 [size_is(size
/2),length_is(length
/2)] uint16
*bindata
;
89 /* - MSV1_0_ALLOW_SERVER_TRUST_ACCOUNT
90 * sets the NETLOGON_SERVER_TRUST_ACCOUNT user_flag
91 * - MSV1_0_UPDATE_LOGON_STATISTICS
92 * sets the logon time on network logon
93 * - MSV1_0_RETURN_USER_PARAMETERS
94 * sets the user parameters in the driveletter
95 * - MSV1_0_RETURN_PROFILE_PATH
96 * returns the profilepath in the driveletter and
97 * sets LOGON_PROFILE_PATH_RETURNED user_flag
100 typedef [public,bitmap32bit
] bitmap
{
101 MSV1_0_CLEARTEXT_PASSWORD_ALLOWED
= 0x00000002,
102 MSV1_0_UPDATE_LOGON_STATISTICS
= 0x00000004,
103 MSV1_0_RETURN_USER_PARAMETERS
= 0x00000008,
104 MSV1_0_ALLOW_SERVER_TRUST_ACCOUNT
= 0x00000020,
105 MSV1_0_RETURN_PROFILE_PATH
= 0x00000200,
106 MSV1_0_ALLOW_WORKSTATION_TRUST_ACCOUNT
= 0x00000800
107 } netr_LogonParameterControl
;
110 lsa_String domain_name
;
111 netr_LogonParameterControl parameter_control
; /* see MSV1_0_* */
113 uint32 logon_id_high
;
114 lsa_String account_name
;
115 lsa_String workstation
;
119 netr_IdentityInfo identity_info
;
120 samr_Password lmpassword
;
121 samr_Password ntpassword
;
124 typedef [flag
(NDR_PAHEX
)] struct {
126 [value
(length
)] uint16 size
;
127 [size_is(length
),length_is(length
)] uint8
*data
;
128 } netr_ChallengeResponse
;
130 typedef [flag
(NDR_PAHEX
)] struct {
131 netr_IdentityInfo identity_info
;
133 netr_ChallengeResponse nt
;
134 netr_ChallengeResponse lm
;
137 typedef [public,switch_type(uint16
)] union {
138 [case(1)] netr_PasswordInfo
*password
;
139 [case(2)] netr_NetworkInfo
*network
;
140 [case(3)] netr_PasswordInfo
*password
;
141 [case(5)] netr_PasswordInfo
*password
;
142 [case(6)] netr_NetworkInfo
*network
;
145 typedef [public,flag
(NDR_PAHEX
)] struct {
147 } netr_UserSessionKey
;
149 typedef [public,flag
(NDR_PAHEX
)] struct {
153 /* Flags for user_flags below */
154 typedef [public,bitmap32bit
] bitmap
{
155 NETLOGON_GUEST
= 0x00000001,
156 NETLOGON_NOENCRYPTION
= 0x00000002,
157 NETLOGON_CACHED_ACCOUNT
= 0x00000004,
158 NETLOGON_USED_LM_PASSWORD
= 0x00000008,
159 NETLOGON_EXTRA_SIDS
= 0x00000020,
160 NETLOGON_SUBAUTH_SESSION_KEY
= 0x00000040,
161 NETLOGON_SERVER_TRUST_ACCOUNT
= 0x00000080,
162 NETLOGON_NTLMV2_ENABLED
= 0x00000100,
163 NETLOGON_RESOURCE_GROUPS
= 0x00000200,
164 NETLOGON_PROFILE_PATH_RETURNED
= 0x00000400,
165 NETLOGON_GRACE_LOGON
= 0x01000000
172 NTTIME last_password_change
;
173 NTTIME allow_password_change
;
174 NTTIME force_password_change
;
175 lsa_String account_name
;
176 lsa_String full_name
;
177 lsa_String logon_script
;
178 lsa_String profile_path
;
179 lsa_String home_directory
;
180 lsa_String home_drive
;
182 uint16 bad_password_count
;
185 samr_RidWithAttributeArray groups
;
186 netr_UserFlags user_flags
;
187 netr_UserSessionKey key
;
188 lsa_StringLarge logon_server
;
189 lsa_StringLarge domain
;
190 dom_sid2
*domain_sid
;
191 netr_LMSessionKey LMSessKey
;
192 samr_AcctFlags acct_flags
;
197 netr_SamBaseInfo base
;
202 samr_GroupAttrs attributes
;
205 typedef [public] struct {
206 netr_SamBaseInfo base
;
208 [size_is(sidcount
)] netr_SidAttr
*sids
;
212 netr_SamBaseInfo base
;
214 [size_is(sidcount
)] netr_SidAttr
*sids
;
216 lsa_String principle
;
222 [size_is(pac_size
)] uint8
*pac
;
223 lsa_String logon_domain
;
224 lsa_String logon_server
;
225 lsa_String principal_name
;
227 [size_is(auth_size
)] uint8
*auth
;
228 netr_UserSessionKey user_session_key
;
229 uint32 expansionroom
[10];
236 typedef [public,switch_type(uint16
)] union {
237 [case(2)] netr_SamInfo2
*sam2
;
238 [case(3)] netr_SamInfo3
*sam3
;
239 [case(4)] netr_PacInfo
*pac
;
240 [case(5)] netr_PacInfo
*pac
;
241 [case(6)] netr_SamInfo6
*sam6
;
244 typedef [public, flag
(NDR_PAHEX
)] struct {
248 typedef [public] struct {
249 netr_Credential cred
;
251 } netr_Authenticator
;
254 INTERACTIVE_LOGON_TYPE
= 1,
258 NTSTATUS netr_LogonSamLogon
(
259 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
260 [in,unique] [string,charset
(UTF16
)] uint16
*computer_name
,
261 [in,unique] netr_Authenticator
*credential
,
262 [in,out,unique] netr_Authenticator
*return_authenticator
,
263 [in] netr_LogonLevel logon_level
,
264 [in,ref] [switch_is(logon_level
)] netr_LogonInfo
*logon
,
265 [in] uint16 validation_level
,
266 [out,ref] [switch_is(validation_level
)] netr_Validation
*validation
,
267 [out,ref] uint8
*authoritative
274 NTSTATUS netr_LogonSamLogoff
(
275 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
276 [in,unique] [string,charset
(UTF16
)] uint16
*computer_name
,
277 [in,unique] netr_Authenticator
*credential
,
278 [in,out,unique] netr_Authenticator
*return_authenticator
,
279 [in] netr_LogonLevel logon_level
,
280 [in] [switch_is(logon_level
)] netr_LogonInfo logon
288 NTSTATUS netr_ServerReqChallenge
(
289 [in,unique,string,charset
(UTF16
)] uint16
*server_name
,
290 [in,string,charset
(UTF16
)] uint16 computer_name
[],
291 [in,ref] netr_Credential
*credentials
,
292 [out,ref] netr_Credential
*return_credentials
299 typedef enum netr_SchannelType netr_SchannelType
;
301 NTSTATUS netr_ServerAuthenticate
(
302 [in,unique,string,charset
(UTF16
)] uint16
*server_name
,
303 [in,string,charset
(UTF16
)] uint16 account_name
[],
304 [in] netr_SchannelType secure_channel_type
,
305 [in,string,charset
(UTF16
)] uint16 computer_name
[],
306 [in,ref] netr_Credential
*credentials
,
307 [out,ref] netr_Credential
*return_credentials
314 NTSTATUS netr_ServerPasswordSet
(
315 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
316 [in] [string,charset
(UTF16
)] uint16 account_name
[],
317 [in] netr_SchannelType secure_channel_type
,
318 [in] [string,charset
(UTF16
)] uint16 computer_name
[],
319 [in,ref] netr_Authenticator
*credential
,
320 [out,ref] netr_Authenticator
*return_authenticator
,
321 [in,ref] samr_Password
*new_password
328 typedef enum netr_SamDatabaseID netr_SamDatabaseID
;
331 [string,charset
(UTF16
)] uint16
*account_name
;
340 } netr_DELTA_DELETE_USER
;
344 [value
(length
)] uint16 size
;
351 [value
(nt_length
)] uint16 nt_size
;
354 [value
(lm_length
)] uint16 lm_size
;
356 uint8 nt_history
[nt_length
];
357 uint8 lm_history
[lm_length
];
358 } netr_PasswordHistory
;
361 netr_USER_KEY16 lmpassword
;
362 netr_USER_KEY16 ntpassword
;
363 netr_PasswordHistory history
;
366 typedef struct { /* TODO: make this a union! */
367 netr_USER_KEYS2 keys2
;
368 } netr_USER_KEY_UNION
;
370 typedef [public] struct {
372 netr_USER_KEY_UNION keys
;
376 boolean8 SensitiveDataFlag
;
379 /* netr_USER_KEYS encrypted with the session key */
380 [size_is(DataLength
)][flag
(NDR_PAHEX
)] uint8
*SensitiveData
;
381 } netr_USER_PRIVATE_INFO
;
384 lsa_String account_name
;
385 lsa_String full_name
;
388 lsa_String home_directory
;
389 lsa_String home_drive
;
390 lsa_String logon_script
;
391 lsa_String description
;
392 lsa_String workstations
;
395 samr_LogonHours logon_hours
;
396 uint16 bad_password_count
;
398 NTTIME last_password_change
;
400 samr_AcctFlags acct_flags
;
401 samr_Password lmpassword
;
402 samr_Password ntpassword
;
403 boolean8 nt_password_present
;
404 boolean8 lm_password_present
;
405 boolean8 password_expired
;
407 lsa_String parameters
;
410 netr_USER_PRIVATE_INFO user_private_info
;
411 uint32 SecurityInformation
;
413 lsa_String profile_path
;
424 lsa_String domain_name
;
426 dlong force_logoff_time
;
427 uint16 min_password_length
;
428 uint16 password_history_length
;
429 /* yes, these are signed. They are in negative 100ns */
430 dlong max_password_age
;
431 dlong min_password_age
;
433 NTTIME domain_create_time
;
434 uint32 SecurityInformation
;
436 netr_AcctLockStr account_lockout
;
440 uint32 logon_to_chgpass
;
447 lsa_String group_name
;
450 lsa_String description
;
451 uint32 SecurityInformation
;
477 [size_is(num_rids
)] uint32
*rids
;
478 [size_is(num_rids
)] uint32
*attribs
;
484 } netr_DELTA_GROUP_MEMBER
;
487 lsa_String alias_name
;
489 uint32 SecurityInformation
;
491 lsa_String description
;
507 } netr_DELTA_ALIAS_MEMBER
;
510 uint32 pagedpoollimit
;
511 uint32 nonpagedpoollimit
;
512 uint32 minimumworkingsetsize
;
513 uint32 maximumworkingsetsize
;
514 uint32 pagefilelimit
;
520 NTTIME auditretentionperiod
;
521 boolean8 auditingmode
;
522 uint32 maxauditeventcount
;
523 [size_is(maxauditeventcount
+1)] uint32
*eventauditoptions
;
524 lsa_String primary_domain_name
;
526 netr_QUOTA_LIMITS quota_limits
;
528 NTTIME db_create_time
;
529 uint32 SecurityInformation
;
542 lsa_String domain_name
;
543 uint32 num_controllers
;
544 [size_is(num_controllers
)] lsa_String
*controller_names
;
545 uint32 SecurityInformation
;
555 } netr_DELTA_TRUSTED_DOMAIN
;
559 } netr_DELTA_DELETE_TRUST
;
562 uint32 privilege_entries
;
563 uint32 privilege_control
;
564 [size_is(privilege_entries
)] uint32
*privilege_attrib
;
565 [size_is(privilege_entries
)] lsa_String
*privilege_name
;
566 netr_QUOTA_LIMITS quotalimits
;
568 uint32 SecurityInformation
;
578 } netr_DELTA_ACCOUNT
;
582 } netr_DELTA_DELETE_ACCOUNT
;
586 } netr_DELTA_DELETE_SECRET
;
591 [size_is(maxlen
)][length_is(len
)] uint8
*cipher_data
;
595 netr_CIPHER_VALUE current_cipher
;
596 NTTIME current_cipher_set_time
;
597 netr_CIPHER_VALUE old_cipher
;
598 NTTIME old_cipher_set_time
;
599 uint32 SecurityInformation
;
612 NETR_DELTA_DOMAIN
= 1,
613 NETR_DELTA_GROUP
= 2,
614 NETR_DELTA_DELETE_GROUP
= 3,
615 NETR_DELTA_RENAME_GROUP
= 4,
617 NETR_DELTA_DELETE_USER
= 6,
618 NETR_DELTA_RENAME_USER
= 7,
619 NETR_DELTA_GROUP_MEMBER
= 8,
620 NETR_DELTA_ALIAS
= 9,
621 NETR_DELTA_DELETE_ALIAS
= 10,
622 NETR_DELTA_RENAME_ALIAS
= 11,
623 NETR_DELTA_ALIAS_MEMBER
= 12,
624 NETR_DELTA_POLICY
= 13,
625 NETR_DELTA_TRUSTED_DOMAIN
= 14,
626 NETR_DELTA_DELETE_TRUST
= 15,
627 NETR_DELTA_ACCOUNT
= 16,
628 NETR_DELTA_DELETE_ACCOUNT
= 17,
629 NETR_DELTA_SECRET
= 18,
630 NETR_DELTA_DELETE_SECRET
= 19,
631 NETR_DELTA_DELETE_GROUP2
= 20,
632 NETR_DELTA_DELETE_USER2
= 21,
633 NETR_DELTA_MODIFY_COUNT
= 22
636 typedef [switch_type(netr_DeltaEnum
)] union {
637 [case(NETR_DELTA_DOMAIN
)] netr_DELTA_DOMAIN
*domain
;
638 [case(NETR_DELTA_GROUP
)] netr_DELTA_GROUP
*group
;
639 [case(NETR_DELTA_DELETE_GROUP
)] ; /* rid only */
640 [case(NETR_DELTA_RENAME_GROUP
)] netr_DELTA_RENAME
*rename_group
;
641 [case(NETR_DELTA_USER
)] netr_DELTA_USER
*user
;
642 [case(NETR_DELTA_DELETE_USER
)] ; /* rid only */
643 [case(NETR_DELTA_RENAME_USER
)] netr_DELTA_RENAME
*rename_user
;
644 [case(NETR_DELTA_GROUP_MEMBER
)] netr_DELTA_GROUP_MEMBER
*group_member
;
645 [case(NETR_DELTA_ALIAS
)] netr_DELTA_ALIAS
*alias
;
646 [case(NETR_DELTA_DELETE_ALIAS
)] ; /* rid only */
647 [case(NETR_DELTA_RENAME_ALIAS
)] netr_DELTA_RENAME
*rename_alias
;
648 [case(NETR_DELTA_ALIAS_MEMBER
)] netr_DELTA_ALIAS_MEMBER
*alias_member
;
649 [case(NETR_DELTA_POLICY
)] netr_DELTA_POLICY
*policy
;
650 [case(NETR_DELTA_TRUSTED_DOMAIN
)] netr_DELTA_TRUSTED_DOMAIN
*trusted_domain
;
651 [case(NETR_DELTA_DELETE_TRUST
)] netr_DELTA_DELETE_TRUST delete_trust
;
652 [case(NETR_DELTA_ACCOUNT
)] netr_DELTA_ACCOUNT
*account
;
653 [case(NETR_DELTA_DELETE_ACCOUNT
)] netr_DELTA_DELETE_ACCOUNT delete_account
;
654 [case(NETR_DELTA_SECRET
)] netr_DELTA_SECRET
*secret
;
655 [case(NETR_DELTA_DELETE_SECRET
)] netr_DELTA_DELETE_SECRET delete_secret
;
656 [case(NETR_DELTA_DELETE_GROUP2
)] netr_DELTA_DELETE_USER
*delete_group
;
657 [case(NETR_DELTA_DELETE_USER2
)] netr_DELTA_DELETE_USER
*delete_user
;
658 [case(NETR_DELTA_MODIFY_COUNT
)] udlong
*modified_count
;
661 typedef [switch_type(netr_DeltaEnum
)] union {
662 [case(NETR_DELTA_DOMAIN
)] uint32 rid
;
663 [case(NETR_DELTA_GROUP
)] uint32 rid
;
664 [case(NETR_DELTA_DELETE_GROUP
)] uint32 rid
;
665 [case(NETR_DELTA_RENAME_GROUP
)] uint32 rid
;
666 [case(NETR_DELTA_USER
)] uint32 rid
;
667 [case(NETR_DELTA_DELETE_USER
)] uint32 rid
;
668 [case(NETR_DELTA_RENAME_USER
)] uint32 rid
;
669 [case(NETR_DELTA_GROUP_MEMBER
)] uint32 rid
;
670 [case(NETR_DELTA_ALIAS
)] uint32 rid
;
671 [case(NETR_DELTA_DELETE_ALIAS
)] uint32 rid
;
672 [case(NETR_DELTA_RENAME_ALIAS
)] uint32 rid
;
673 [case(NETR_DELTA_ALIAS_MEMBER
)] uint32 rid
;
674 [case(NETR_DELTA_POLICY
)] dom_sid2
*sid
;
675 [case(NETR_DELTA_TRUSTED_DOMAIN
)] dom_sid2
*sid
;
676 [case(NETR_DELTA_DELETE_TRUST
)] dom_sid2
*sid
;
677 [case(NETR_DELTA_ACCOUNT
)] dom_sid2
*sid
;
678 [case(NETR_DELTA_DELETE_ACCOUNT
)] dom_sid2
*sid
;
679 [case(NETR_DELTA_SECRET
)] [string,charset
(UTF16
)] uint16
*name
;
680 [case(NETR_DELTA_DELETE_SECRET
)] [string,charset
(UTF16
)] uint16
*name
;
681 [case(NETR_DELTA_DELETE_GROUP2
)] uint32 rid
;
682 [case(NETR_DELTA_DELETE_USER2
)] uint32 rid
;
683 [case(NETR_DELTA_MODIFY_COUNT
)] ;
684 } netr_DELTA_ID_UNION
;
687 netr_DeltaEnum delta_type
;
688 [switch_is(delta_type
)] netr_DELTA_ID_UNION delta_id_union
;
689 [switch_is(delta_type
)] netr_DELTA_UNION delta_union
;
694 [size_is(num_deltas
)] netr_DELTA_ENUM
*delta_enum
;
695 } netr_DELTA_ENUM_ARRAY
;
698 NTSTATUS netr_DatabaseDeltas
(
699 [in] [string,charset
(UTF16
)] uint16 logon_server
[],
700 [in] [string,charset
(UTF16
)] uint16 computername
[],
701 [in,ref] netr_Authenticator
*credential
,
702 [in,out,ref] netr_Authenticator
*return_authenticator
,
703 [in] netr_SamDatabaseID database_id
,
704 [in,out,ref] udlong
*sequence_num
,
705 [out,ref] netr_DELTA_ENUM_ARRAY
**delta_enum_array
,
706 [in] uint32 preferredmaximumlength
713 NTSTATUS netr_DatabaseSync
(
714 [in] [string,charset
(UTF16
)] uint16 logon_server
[],
715 [in] [string,charset
(UTF16
)] uint16 computername
[],
716 [in] netr_Authenticator credential
,
717 [in,out,ref] netr_Authenticator
*return_authenticator
,
718 [in] netr_SamDatabaseID database_id
,
719 [in,out,ref] uint32
*sync_context
,
720 [in] uint32 preferredmaximumlength
,
721 [out,ref] netr_DELTA_ENUM_ARRAY
*delta_enum_array
728 /* w2k3 returns NT_STATUS_NOT_IMPLEMENTED for this call */
730 typedef [flag
(NDR_PAHEX
)] struct {
731 uint8 computer_name
[16];
733 uint32 serial_number
;
737 [flag
(NDR_REMAINING
)] DATA_BLOB blob
;
738 } netr_AccountBuffer
;
740 NTSTATUS netr_AccountDeltas
(
741 [in,unique] [string,charset
(UTF16
)] uint16
*logon_server
,
742 [in] [string,charset
(UTF16
)] uint16 computername
[],
743 [in] netr_Authenticator credential
,
744 [in,out,ref] netr_Authenticator
*return_authenticator
,
745 [in] netr_UAS_INFO_0 uas
,
748 [in] uint32 buffersize
,
749 [out,ref,subcontext
(4)] netr_AccountBuffer
*buffer
,
750 [out,ref] uint32
*count_returned
,
751 [out,ref] uint32
*total_entries
,
752 [out,ref] netr_UAS_INFO_0
*recordid
759 NTSTATUS netr_AccountSync
(
760 [in,unique] [string,charset
(UTF16
)] uint16
*logon_server
,
761 [in] [string,charset
(UTF16
)] uint16 computername
[],
762 [in] netr_Authenticator credential
,
763 [in,out,ref] netr_Authenticator
*return_authenticator
,
764 [in] uint32 reference
,
766 [in] uint32 buffersize
,
767 [out,ref,subcontext
(4)] netr_AccountBuffer
*buffer
,
768 [out,ref] uint32
*count_returned
,
769 [out,ref] uint32
*total_entries
,
770 [out,ref] uint32
*next_reference
,
771 [in,out,ref] netr_UAS_INFO_0
*recordid
778 WERROR netr_GetDcName
(
779 [in] [string,charset
(UTF16
)] uint16 logon_server
[],
780 [in,unique] [string,charset
(UTF16
)] uint16
*domainname
,
781 [out,ref] [string,charset
(UTF16
)] uint16
**dcname
787 typedef [bitmap32bit
] bitmap
{
788 NETLOGON_CTRL_REPL_NEEDED
= 0x0001,
789 NETLOGON_CTRL_REPL_IN_PROGRESS
= 0x0002,
790 NETLOGON_CTRL_REPL_FULL_SYNC
= 0x0004
794 netr_InfoFlags flags
;
795 uint32 pdc_connection_status
;
796 } netr_NETLOGON_INFO_1
;
799 netr_InfoFlags flags
;
800 uint32 pdc_connection_status
;
801 [string,charset
(UTF16
)] uint16
*trusted_dc_name
;
802 uint32 tc_connection_status
;
803 } netr_NETLOGON_INFO_2
;
806 netr_InfoFlags flags
;
807 uint32 logon_attempts
;
813 } netr_NETLOGON_INFO_3
;
816 [case(1)] netr_NETLOGON_INFO_1
*info1
;
817 [case(2)] netr_NETLOGON_INFO_2
*info2
;
818 [case(3)] netr_NETLOGON_INFO_3
*info3
;
819 } netr_CONTROL_QUERY_INFORMATION
;
821 /* function_code values */
822 typedef [v1_enum] enum {
823 NETLOGON_CONTROL_SYNC
= 2,
824 NETLOGON_CONTROL_REDISCOVER
= 5,
825 NETLOGON_CONTROL_TC_QUERY
= 6,
826 NETLOGON_CONTROL_TRANSPORT_NOTIFY
= 7,
827 NETLOGON_CONTROL_SET_DBFLAG
= 65534
828 } netr_LogonControlCode
;
830 WERROR netr_LogonControl
(
831 [in,unique] [string,charset
(UTF16
)] uint16
*logon_server
,
832 [in] netr_LogonControlCode function_code
,
834 [out,ref,switch_is(level
)] netr_CONTROL_QUERY_INFORMATION
*info
841 WERROR netr_GetAnyDCName
(
842 [in,unique] [string,charset
(UTF16
)] uint16
*logon_server
,
843 [in,unique] [string,charset
(UTF16
)] uint16
*domainname
,
844 [out,ref] [string,charset
(UTF16
)] uint16
**dcname
852 [case(NETLOGON_CONTROL_REDISCOVER
)] [string,charset
(UTF16
)] uint16
*domain
;
853 [case(NETLOGON_CONTROL_TC_QUERY
)] [string,charset
(UTF16
)] uint16
*domain
;
854 [case(NETLOGON_CONTROL_TRANSPORT_NOTIFY
)] [string,charset
(UTF16
)] uint16
*domain
;
855 [case(NETLOGON_CONTROL_SET_DBFLAG
)] uint32 debug_level
;
856 } netr_CONTROL_DATA_INFORMATION
;
858 WERROR netr_LogonControl2
(
859 [in,unique] [string,charset
(UTF16
)] uint16
*logon_server
,
860 [in] netr_LogonControlCode function_code
,
862 [in,ref][switch_is(function_code
)] netr_CONTROL_DATA_INFORMATION
*data
,
863 [out,ref][switch_is(level
)] netr_CONTROL_QUERY_INFORMATION
*query
867 /* If this flag is not set, then the passwords and LM session keys are
868 * encrypted with DES calls. (And the user session key is
870 const int NETLOGON_NEG_ARCFOUR
= 0x00000004;
871 const int NETLOGON_NEG_128BIT
= 0x00004000;
872 const int NETLOGON_NEG_SCHANNEL
= 0x40000000;
877 NTSTATUS netr_ServerAuthenticate2
(
878 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
879 [in] [string,charset
(UTF16
)] uint16 account_name
[],
880 [in] netr_SchannelType secure_channel_type
,
881 [in] [string,charset
(UTF16
)] uint16 computer_name
[],
882 [in,ref] netr_Credential
*credentials
,
883 [out,ref] netr_Credential
*return_credentials
,
884 [in,out,ref] uint32
*negotiate_flags
891 NTSTATUS netr_DatabaseSync2
(
892 [in] [string,charset
(UTF16
)] uint16 logon_server
[],
893 [in] [string,charset
(UTF16
)] uint16 computername
[],
894 [in] netr_Authenticator
*credential
,
895 [in,out,ref] netr_Authenticator
*return_authenticator
,
896 [in] netr_SamDatabaseID database_id
,
897 [in] uint16 restart_state
,
898 [in,out,ref] uint32
*sync_context
,
899 [out,ref] netr_DELTA_ENUM_ARRAY
**delta_enum_array
,
900 [in] uint32 preferredmaximumlength
907 /* i'm not at all sure how this call works */
909 NTSTATUS netr_DatabaseRedo
(
910 [in] [string,charset
(UTF16
)] uint16 logon_server
[],
911 [in] [string,charset
(UTF16
)] uint16 computername
[],
912 [in] netr_Authenticator credential
,
913 [in,out,ref] netr_Authenticator
*return_authenticator
,
914 [in,unique][size_is(change_log_entry_size
)] uint8
*change_log_entry
,
915 [in] uint32 change_log_entry_size
,
916 [out,ref] netr_DELTA_ENUM_ARRAY
*delta_enum_array
923 WERROR netr_LogonControl2Ex
(
924 [in,unique] [string,charset
(UTF16
)] uint16
*logon_server
,
925 [in] uint32 function_code
,
927 [in][switch_is(function_code
)] netr_CONTROL_DATA_INFORMATION data
,
928 [out,ref][switch_is(level
)] netr_CONTROL_QUERY_INFORMATION
*query
935 [size_is(length
)] uint8
*data
;
938 WERROR netr_NetrEnumerateTrustedDomains
(
939 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
940 [out,ref] netr_Blob
*trusted_domains_blob
946 /* one unkown bit still: DS_IP_VERSION_AGNOSTIC - gd*/
948 const int DSGETDC_VALID_FLAGS
= (DS_FORCE_REDISCOVERY |
949 DS_DIRECTORY_SERVICE_REQUIRED |
950 DS_DIRECTORY_SERVICE_PREFERRED |
951 DS_GC_SERVER_REQUIRED |
956 DS_TIMESERV_REQUIRED |
957 DS_WRITABLE_REQUIRED |
958 DS_GOOD_TIMESERV_PREFERRED |
960 DS_ONLY_LDAP_NEEDED |
963 DS_RETURN_FLAT_NAME |
966 typedef [bitmap32bit
] bitmap
{
967 DS_FORCE_REDISCOVERY
= 0x00000001,
968 DS_DIRECTORY_SERVICE_REQUIRED
= 0x00000010,
969 DS_DIRECTORY_SERVICE_PREFERRED
= 0x00000020,
970 DS_GC_SERVER_REQUIRED
= 0x00000040,
971 DS_PDC_REQUIRED
= 0x00000080,
972 DS_BACKGROUND_ONLY
= 0x00000100,
973 DS_IP_REQUIRED
= 0x00000200,
974 DS_KDC_REQUIRED
= 0x00000400,
975 DS_TIMESERV_REQUIRED
= 0x00000800,
976 DS_WRITABLE_REQUIRED
= 0x00001000,
977 DS_GOOD_TIMESERV_PREFERRED
= 0x00002000,
978 DS_AVOID_SELF
= 0x00004000,
979 DS_ONLY_LDAP_NEEDED
= 0x00008000,
980 DS_IS_FLAT_NAME
= 0x00010000,
981 DS_IS_DNS_NAME
= 0x00020000,
982 DS_TRY_NEXTCLOSEST_SITE
= 0x00040000,
983 DS_DIRECTORY_SERVICE_6_REQUIRED
= 0x00080000,
984 DS_RETURN_DNS_NAME
= 0x40000000,
985 DS_RETURN_FLAT_NAME
= 0x80000000
986 } netr_DsRGetDCName_flags
;
988 typedef [v1_enum] enum {
989 DS_ADDRESS_TYPE_INET
= 1,
990 DS_ADDRESS_TYPE_NETBIOS
= 2
991 } netr_DsRGetDCNameInfo_AddressType
;
993 typedef [bitmap32bit
] bitmap
{
994 DS_SERVER_PDC
= 0x00000001 /* NBT_SERVER_PDC */,
995 DS_SERVER_GC
= 0x00000004 /* NBT_SERVER_GC */,
996 DS_SERVER_LDAP
= 0x00000008 /* NBT_SERVER_LDAP */,
997 DS_SERVER_DS
= 0x00000010 /* NBT_SERVER_DS */,
998 DS_SERVER_KDC
= 0x00000020 /* NBT_SERVER_KDC */,
999 DS_SERVER_TIMESERV
= 0x00000040 /* NBT_SERVER_TIMESERV */,
1000 DS_SERVER_CLOSEST
= 0x00000080 /* NBT_SERVER_CLOSEST */,
1001 DS_SERVER_WRITABLE
= 0x00000100 /* NBT_SERVER_WRITABLE */,
1002 DS_SERVER_GOOD_TIMESERV
= 0x00000200 /* NBT_SERVER_GOOD_TIMESERV */,
1003 DS_SERVER_NDNC
= 0x00000400,
1004 DS_SERVER_SELECT_SECRET_DOMAIN_6
= 0x00000800,
1005 DS_SERVER_FULL_SECRET_DOMAIN_6
= 0x00001000,
1006 DS_DNS_CONTROLLER
= 0x20000000,
1007 DS_DNS_DOMAIN
= 0x40000000,
1008 DS_DNS_FOREST
= 0x80000000
1012 [string,charset
(UTF16
)] uint16
*dc_unc
;
1013 [string,charset
(UTF16
)] uint16
*dc_address
;
1014 netr_DsRGetDCNameInfo_AddressType dc_address_type
;
1016 [string,charset
(UTF16
)] uint16
*domain_name
;
1017 [string,charset
(UTF16
)] uint16
*forest_name
;
1018 netr_DsR_DcFlags dc_flags
;
1019 [string,charset
(UTF16
)] uint16
*dc_site_name
;
1020 [string,charset
(UTF16
)] uint16
*client_site_name
;
1021 } netr_DsRGetDCNameInfo
;
1023 WERROR netr_DsRGetDCName
(
1024 [in,unique] [string,charset
(UTF16
)] uint16
*server_unc
,
1025 [in,unique] [string,charset
(UTF16
)] uint16
*domain_name
,
1026 [in,unique] GUID
*domain_guid
,
1027 [in,unique] GUID
*site_guid
,
1028 [in] netr_DsRGetDCName_flags flags
,
1029 [out,ref] netr_DsRGetDCNameInfo
**info
1034 WERROR netr_NETRLOGONDUMMYROUTINE1
();
1038 WERROR netr_NETRLOGONSETSERVICEBITS
();
1042 WERROR netr_LogonGetTrustRid
(
1043 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1044 [in,unique] [string,charset
(UTF16
)] uint16
*domain_name
,
1045 [out,ref] uint32
*rid
1050 WERROR netr_NETRLOGONCOMPUTESERVERDIGEST
();
1054 WERROR netr_NETRLOGONCOMPUTECLIENTDIGEST
();
1058 NTSTATUS netr_ServerAuthenticate3
(
1059 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1060 [in] [string,charset
(UTF16
)] uint16 account_name
[],
1061 [in] netr_SchannelType secure_channel_type
,
1062 [in] [string,charset
(UTF16
)] uint16 computer_name
[],
1063 [in,out,ref] netr_Credential
*credentials
,
1064 [in,out,ref] uint32
*negotiate_flags
,
1065 [out,ref] uint32
*rid
1071 WERROR netr_DsRGetDCNameEx
(
1072 [in,unique] [string,charset
(UTF16
)] uint16
*server_unc
,
1073 [in,unique] [string,charset
(UTF16
)] uint16
*domain_name
,
1074 [in,unique] GUID
*domain_guid
,
1075 [in,unique] [string,charset
(UTF16
)] uint16
*site_name
,
1076 [in] netr_DsRGetDCName_flags flags
,
1077 [out,ref] netr_DsRGetDCNameInfo
**info
1082 WERROR netr_DsRGetSiteName
(
1083 [in,unique] [string,charset
(UTF16
)] uint16
*computer_name
,
1084 [out,ref] [string,charset
(UTF16
)] uint16
**site
1090 typedef [flag
(NDR_PAHEX
)] struct {
1093 [size_is(size
/2),length_is(length
/2)] uint16
*data
;
1094 } netr_BinaryString
;
1098 [string,charset
(UTF16
)] uint16
*workstation_domain
;
1099 [string,charset
(UTF16
)] uint16
*workstation_site
;
1100 [string,charset
(UTF16
)] uint16
*unknown1
;
1101 [string,charset
(UTF16
)] uint16
*unknown2
;
1102 [string,charset
(UTF16
)] uint16
*unknown3
;
1103 [string,charset
(UTF16
)] uint16
*unknown4
;
1104 netr_BinaryString blob2
;
1106 lsa_String unknown5
;
1107 lsa_String unknown6
;
1109 } netr_DomainQuery1
;
1112 [case(1)] netr_DomainQuery1
*query1
;
1113 [case(2)] netr_DomainQuery1
*query1
;
1117 lsa_String domainname
;
1118 lsa_String fulldomainname
;
1122 netr_BinaryString unknown1
[4];
1124 } netr_DomainTrustInfo
;
1127 netr_DomainTrustInfo domaininfo
;
1129 [size_is(num_trusts
)] netr_DomainTrustInfo
*trusts
;
1130 uint32 unknown
[14]; /* room for expansion? */
1134 [case(1)] netr_DomainInfo1
*info1
;
1135 [case(2)] netr_DomainInfo1
*info1
;
1138 NTSTATUS netr_LogonGetDomainInfo
(
1139 [in] [string,charset
(UTF16
)] uint16 server_name
[],
1140 [in,unique] [string,charset
(UTF16
)] uint16
*computer_name
,
1141 [in,ref] netr_Authenticator
*credential
,
1142 [in,out,ref] netr_Authenticator
*return_authenticator
,
1144 [in,switch_is(level
)] netr_DomainQuery query
,
1145 [out,ref,switch_is(level
)] netr_DomainInfo
*info
1148 typedef [flag
(NDR_PAHEX
)] struct {
1151 } netr_CryptPassword
;
1155 NTSTATUS netr_ServerPasswordSet2
(
1156 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1157 [in] [string,charset
(UTF16
)] uint16 account_name
[],
1158 [in] netr_SchannelType secure_channel_type
,
1159 [in] [string,charset
(UTF16
)] uint16 computer_name
[],
1160 [in] netr_Authenticator credential
,
1161 [in] netr_CryptPassword new_password
,
1162 [out,ref] netr_Authenticator
*return_authenticator
1167 WERROR netr_ServerPasswordGet
(
1168 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1169 [in] [string,charset
(UTF16
)] uint16 account_name
[],
1170 [in] netr_SchannelType secure_channel_type
,
1171 [in] [string,charset
(UTF16
)] uint16 computer_name
[],
1172 [in,ref] netr_Authenticator
*credential
,
1173 [out,ref] netr_Authenticator
*return_authenticator
,
1174 [out,ref] samr_Password
*password
1179 WERROR netr_NETRLOGONSENDTOSAM
();
1185 [size_is(count
)] lsa_String
*sitename
;
1186 } netr_DsRAddressToSitenamesWCtr
;
1189 [size_is(size
)] uint8
*buffer
;
1193 WERROR netr_DsRAddressToSitenamesW
(
1194 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1195 [in] [range(0,32000)] uint32 count
,
1196 [in] [size_is(count
)] [ref] netr_DsRAddress
*addresses
,
1197 [out] [ref] netr_DsRAddressToSitenamesWCtr
**ctr
1202 WERROR netr_DsRGetDCNameEx2
(
1203 [in,unique] [string,charset
(UTF16
)] uint16
*server_unc
,
1204 [in,unique] [string,charset
(UTF16
)] uint16
*client_account
,
1205 [in] samr_AcctFlags mask
,
1206 [in,unique] [string,charset
(UTF16
)] uint16
*domain_name
,
1207 [in,unique] GUID
*domain_guid
,
1208 [in,unique] [string,charset
(UTF16
)] uint16
*site_name
,
1209 [in] netr_DsRGetDCName_flags flags
,
1210 [out,ref] netr_DsRGetDCNameInfo
**info
1215 WERROR netr_NETRLOGONGETTIMESERVICEPARENTDOMAIN
();
1219 typedef [bitmap32bit
] bitmap
{
1220 NETR_TRUST_FLAG_IN_FOREST
= 0x00000001,
1221 NETR_TRUST_FLAG_OUTBOUND
= 0x00000002,
1222 NETR_TRUST_FLAG_TREEROOT
= 0x00000004,
1223 NETR_TRUST_FLAG_PRIMARY
= 0x00000008,
1224 NETR_TRUST_FLAG_NATIVE
= 0x00000010,
1225 NETR_TRUST_FLAG_INBOUND
= 0x00000020
1228 typedef [v1_enum] enum {
1229 NETR_TRUST_TYPE_DOWNLEVEL
= 1,
1230 NETR_TRUST_TYPE_UPLEVEL
= 2,
1231 NETR_TRUST_TYPE_MIT
= 3,
1232 NETR_TRUST_TYPE_DCE
= 4
1235 typedef [bitmap32bit
] bitmap
{
1236 NETR_TRUST_ATTRIBUTE_NON_TRANSITIVE
= 0x00000001,
1237 NETR_TRUST_ATTRIBUTE_UPLEVEL_ONLY
= 0x00000002,
1238 NETR_TRUST_ATTRIBUTE_QUARANTINED_DOMAIN
= 0x00000004,
1239 NETR_TRUST_ATTRIBUTE_FOREST_TRANSITIVE
= 0x00000008,
1240 NETR_TRUST_ATTRIBUTE_CROSS_ORGANIZATION
= 0x00000010,
1241 NETR_TRUST_ATTRIBUTE_WITHIN_FOREST
= 0x00000020,
1242 NETR_TRUST_ATTRIBUTE_TREAT_AS_EXTERNAL
= 0x00000040
1243 } netr_TrustAttributes
;
1246 [string,charset
(UTF16
)] uint16
*netbios_name
;
1247 [string,charset
(UTF16
)] uint16
*dns_name
;
1248 netr_TrustFlags trust_flags
;
1249 uint32 parent_index
;
1250 netr_TrustType trust_type
;
1251 netr_TrustAttributes trust_attributes
;
1258 [size_is(count
)] netr_DomainTrust
*array
;
1259 } netr_DomainTrustList
;
1261 WERROR netr_NetrEnumerateTrustedDomainsEx
(
1262 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1263 [out,ref] netr_DomainTrustList
*dom_trust_list
1270 [size_is(count
)] lsa_String
*sitename
;
1271 [size_is(count
)] lsa_String
*subnetname
;
1272 } netr_DsRAddressToSitenamesExWCtr
;
1274 WERROR netr_DsRAddressToSitenamesExW
(
1275 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1276 [in] [range(0,32000)] uint32 count
,
1277 [in] [size_is(count
)] [ref] netr_DsRAddress
*addresses
,
1278 [out] [ref] netr_DsRAddressToSitenamesExWCtr
**ctr
1286 [size_is(num_sites
)] [unique] lsa_String
*sites
;
1289 WERROR netr_DsrGetDcSiteCoverageW
(
1290 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1291 [out,ref] DcSitesCtr
*ctr
1296 NTSTATUS netr_LogonSamLogonEx
(
1297 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1298 [in,unique] [string,charset
(UTF16
)] uint16
*computer_name
,
1299 [in] netr_LogonLevel logon_level
,
1300 [in,ref] [switch_is(logon_level
)] netr_LogonInfo
*logon
,
1301 [in] uint16 validation_level
,
1302 [out,ref] [switch_is(validation_level
)] netr_Validation
*validation
,
1303 [out,ref] uint8
*authoritative
,
1304 [in,out,ref] uint32
*flags
1310 WERROR netr_DsrEnumerateDomainTrusts
(
1311 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1312 [in] netr_TrustFlags trust_flags
,
1313 [out,ref] netr_DomainTrustList
*trusts
1319 WERROR netr_DsrDeregisterDNSHostRecords
(
1320 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1321 [in,unique] [string,charset
(UTF16
)] uint16
*domain
,
1322 [in,unique] GUID
*domain_guid
,
1323 [in,unique] GUID
*dsa_guid
,
1324 [in,ref] [string,charset
(UTF16
)] uint16
*dns_host
1329 NTSTATUS netr_ServerTrustPasswordsGet
(
1330 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1331 [in] [string,charset
(UTF16
)] uint16 account_name
[],
1332 [in] netr_SchannelType secure_channel_type
,
1333 [in] [string,charset
(UTF16
)] uint16 computer_name
[],
1334 [in,ref] netr_Authenticator
*credential
,
1335 [out,ref] netr_Authenticator
*return_authenticator
,
1336 [out,ref] samr_Password
*password
,
1337 [out,ref] samr_Password
*password2
1343 const int DS_GFTI_UPDATE_TDO
= 0x1;
1345 WERROR netr_DsRGetForestTrustInformation
(
1346 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1347 [in,unique] [string,charset
(UTF16
)] uint16
*trusted_domain_name
,
1349 [out,ref] lsa_ForestTrustInformation
**forest_trust_info
1354 WERROR netr_GetForestTrustInformation
(
1355 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1356 [in,ref] [string,charset
(UTF16
)] uint16
*trusted_domain_name
,
1357 [in,ref] netr_Authenticator
*credential
,
1358 [out,ref] netr_Authenticator
*return_authenticator
,
1360 [out,ref] lsa_ForestTrustInformation
**forest_trust_info
1366 /* this is the ADS varient. I don't yet know what the "flags" are for */
1367 NTSTATUS netr_LogonSamLogonWithFlags
(
1368 [in,unique] [string,charset
(UTF16
)] uint16
*server_name
,
1369 [in,unique] [string,charset
(UTF16
)] uint16
*computer_name
,
1370 [in,unique] netr_Authenticator
*credential
,
1371 [in,out,unique] netr_Authenticator
*return_authenticator
,
1372 [in] netr_LogonLevel logon_level
,
1373 [in] [switch_is(logon_level
)] netr_LogonInfo logon
,
1374 [in] uint16 validation_level
,
1375 [out,ref] [switch_is(validation_level
)] netr_Validation
*validation
,
1376 [out,ref] uint8
*authoritative
,
1377 [in,out,ref] uint32
*flags
1382 WERROR netr_NETRSERVERGETTRUSTINFO
();