|
Overview |
|
|
|
Group |
|
|
|
Quick Info
Windows NT
| Yes
| Win95
| No
| Win32s
| No
| Import Library
| advapi32.lib
| Header File
| aclapi.h
| Unicode
| WinNT
| Platform Notes
| None
|
|
|
GetAuditedPermissionsFromAcl
[New - Windows NT]
The GetAuditedPermissionsFromAcl function returns the audited access rights for a specified trustee. The
audited rights are based on the access-control entries (ACEs) of a specified
access-control list (ACL). The audited access rights indicate the types of access
attempts that cause the system to generate an audit record in the system event log.
The audited rights include those that the ACL specifies for the trustee or for any groups of which the trustee is a member.
In determining the audited rights, the function does not consider the security
privileges held by the trustee.
DWORD GetAuditedPermissionsFromAcl(
PACL pacl,
| // ACL to get trustee's audited rights from
| PTRUSTEE pTrustee,
| // trustee to get rights for
| PACCESS_MASK pSuccessfulAuditedRights,
| // receives rights audited for successful access
| PACCESS_MASK pFailedAuditRights
| // receives rights audited for failed access
| );
|
|
Parameters
pacl
Pointer to an ACL from which to get the trustee's audited access rights.
pTrustee
Pointer to a TRUSTEE structure that identifies the trustee. A trustee can be a user, group, or
program (such as a Windows NT service). You can use a name or a security
identifier (SID) to identify a trustee.
pSuccessfulAuditedRights
Pointer to an ACCESS_MASK variable that receives a set of access rights. The system generates an audit
record when the trustee successfully uses any of these access rights.
pFailedAuditRights
Pointer to an ACCESS_MASK variable that receives a set of access rights based on the access-control
entries in the specified ACL. The system generates an audit record when the
trustee fails in an attempt to use any of these rights.
Return Values
If the function succeeds, the return value is ERROR_SUCCESS.
If the function fails, the return value is a nonzero error code defined in
WINERROR.H.
Remarks
The GetAuditedPermissionsFromAcl function checks all system-audit ACEs in the ACL to determine the audited
rights for the trustee. For all ACEs that specify audited rights for a group, GetAuditedPermissionsFromAcl enumerates the members of the group to determine whether the trustee is a
member. The function returns an error if it cannot enumerate the members of a
group.
See Also
ACCESS_MASK, ACE, ACL, GetEffectiveRightsFromAcl, SID, SYSTEM_AUDIT_ACE, TRUSTEE
Related Links
Software for Delphi and C++ Builder developers
Software for Visual Studio .NET developers
Software for Visual Basic 6 developers
Delphi Tips&Tricks
MegaDetailed.NET
More Online Helps
Win32 Multimedia Programmer's Reference (mmedia.hlp)
OLE Programmer's Reference (ole.hlp)
Microsoft Windows Pen API Programmer's Reference (penapi.hlp)
Microsoft Windows Sockets 2 Reference (sock2.hlp)
Microsoft Windows Telephony API (TAPI) Programmer's Reference (tapi.hlp)
Unix Manual Pages
|
