(945)  Login

English
Regulars table & Café

LsaOpenPolicy

 


Description:

LsaOpenPolicy opens the lever the Policy Objektes on the local System or one Hintergrundcomputer. the Policy Objekt lever is quasi „der golden Schlüssel“ to the Sicherheitseinstellungen The over The LSA-API getätigt go can. These function there only NT-based Windowssystemen.




Deklaration:

DEF @LsaOpenPolicy(4) !advapi32,LsaOpenPolicy




Parameter:

1.Parameter: Structure or 8 byte large Memory-Variable, The indicated over the Zielsystem contains, which Policy Objekt lever opened go should. =>
-byte 0-1 = The long the Strings in Bytes, on the byte 4-7 verweist.
-byte 2-3 = The length the Bereichs in Bytes, on the byte 4-7 verweist.
-byte 4-7 = discretionary, but enough large Memory-Variable with a String in the Unicode stature, the whom names the Zielsystems contains.
2.Parameter: Structure or 28 byte large Memory-Variable for indicated of Verbindungsattributen. this Parameter becomes to Time not used. any Bytes the Structure or the Memory-Variables must therefore on 0 staid go.
3.Parameter: ? Happen?, The whom desired Access to the lever indicate. ? Happen? can with | add go. If the Zielsystem the aufrufenden Process not any Zugriffsrechte granted, proposes The function missing. one ought to itself therefore very consider, which Zugriffsrechte very for action necessary are, for to the lever needed. =>
#Generic Zugriffsrechte#:
-$80000000 = Lesezugriff (GENERIC_READ).
-$40000000 = Schreibzugriff (GENERIC_WRITE).
-$20000000 = right to that Perform (GENERIC_EXECUTE).
-$10000000 = right to that Perform, Schreibzugriff and Lesezugriff (GENERIC_ALL).
#standard Zugriffsrechte#:
-$01000000 = circa Access to The SACL to obtain (ACCESS_SYSTEM_SECURITY).
-$00020000 = circa Lesezugriff on the Security Descriptor (without whom SACL) to obtain (READ_CONTROL = STANDARD_RIGHTS_READ = STANDARD_RIGHTS_WRITE = STANDARD_RIGHTS_EXECUTE).
-$00010000 = right to that delete (_DELETE).
-$00040000 = Write right on the ACL (WRITE_DAC).
-$00080000 = Write right on the proprietor (WRITE_OWNER).
-$00100000 = allows one Process the Objekt To Waiting (SYNCHRONIZE). gives not for all Objekttypen.
-$000F0000 = $00010000+$00020000+$00080000+$00040000 (STANDARD_RIGHTS_REQUIRED).
-$001F0000 = $00010000+$00020000+$00100000+$00080000+$00040000 (STANDARD_RIGHTS_ALL).
#specific Zugriffsrechte#:
-$0001 = (POLICY_VIEW_LOCAL_INFORMATION).
-$0002 = (POLICY_VIEW_AUDIT_INFORMATION)
-$0004 = (POLICY_GET_PRIVATE_INFORMATION).
-$0008 = (POLICY_TRUST_ADMIN).
-$0010 = (POLICY_CREATE_ACCOUNT).
-$0020 = (POLICY_CREATE_SECRET).
-$0040 = (POLICY_CREATE_PRIVILEGE).
-$0080 = (POLICY_SET_DEFAULT_QUOTA_LIMITS).
-$0100 = (POLICY_SET_AUDIT_REQUIREMENTS).
-$0200 = (POLICY_AUDIT_LOG_ADMIN).
-$0400 = (POLICY_SERVER_ADMIN).
-$0800 = (POLICY_LOOKUP_NAMES).
-$FFFF = any specific rights (SPECIFIC_RIGHTS_ALL).

-$02000000 = any allowed Zugriffsrechte for anfragenden Process (MAXIMUM_ALLOWED).
4.Parameter: 4 byte large Memory-Variable, The the lever the Poolicy Objektes aufnimmt.



Return Value:

0 with success, otherwise one NT-status Error Code (LongInt), the with LsaNtStatusToWinError in a Systemfehlercode transformed go can.


Examples:

CompileMarkSeparation
DEF @LsaOpenPolicy(4) !"advapi32","LsaOpenPolicy"
DEF @LsaClose(1) !"advapi32","LsaClose"
DEF @LsaNtStatusToWinError(1) !"advapi32","LsaNtStatusToWinError"
Declare Fehler&,UNICODE#,Attribut#,POLICY_Handle#
Declare Policy_Handle&
Struct LSA_UNICODE_STRING=Length%,MaximumLength%,Buffer&
DIM UNICODE#,LSA_UNICODE_STRING
Clear UNICODE#
Struct LSA_OBJECT_ATTRIBUTES=Length&,RootDirectory&,Length%,MaximumLength%,Buffer&,Attributes&,SecurityDescriptor#(4),SecurityQualityOfService#(4)
DIM Attribut#,LSA_OBJECT_ATTRIBUTES
Clear Attribut#
Dim POLICY_Handle#,4
Windowstyle 31
Windowtitle "Policyobjekthandle"
Window 0,0-640,440
LET Fehler&=@LsaOpenPolicy(0,Attribut#,16 | 2048,POLICY_Handle#)
Print "Rückmeldung von LsaOpenPolicy="+@STR$(Fehler&)
Let Fehler&=@LsaNtStatusToWinError(Fehler&)
PRINT "LsaOpenPolicy Rückmeldung umgewandelt in Windows Fehlercode="+@STR$(Fehler&)
LET Policy_Handle&=@LONG(POLICY_Handle#,0)
Print "Geliefertes Handle="+@STR$(Policy_Handle&)
LET Fehler&=@LsaClose(Policy_Handle&,0)
Print "Rückmeldung von LsaClose="+@STR$(Fehler&)
Let Fehler&=@LsaNtStatusToWinError(Fehler&)
PRINT "LsaClose Rückmeldung umgewandelt in Windows Fehlercode="+@STR$(Fehler&)

While 0=0

    Waitinput

Wend
 
04/08/05  
 



Answer


Topictitle, max. 100 characters.
 

Systemprofile:

no Systemprofil laid out. [anlegen]

XProfan:

 Posting  Font  Smilies  ▼ 

Please register circa a Posting To verfassen.
 

Topic-Options

Unreaded
subscribe
Remember-List
Notes
guests
Delete
Permanent
Done

2.782 Views

Untitledvor 0 min.

Themeninformationen

this Topic has 1 subscriber:

unbekannt (1x)


Admins  |  AGB  |  Applications  |  Authors  |  Chat  |  Privacy Policy  |  Download  |  Entrance  |  Help  |  Merchantportal  |  Imprint  |  Mart  |  Interfaces  |  SDK  |  Services  |  Games  |  Search  |  Support

One proposition all XProfan, The there's!


My XProfan
Private Messages
Own Storage Forum
Topics-Remember-List
Own Posts
Own Topics
Clipboard
Log off
 Deutsch English Français Español Italia
Translations

Privacy Policy


we use Cookies only as Session-Cookies because of the technical necessity and with us there no Cookies of Drittanbietern.

If you here on our Website click or navigate, stimmst You ours registration of Information in our Cookies on XProfan.Net To.

further Information To our Cookies and moreover, How You The control above keep, find You in ours nachfolgenden Datenschutzerklärung.

all rightDatenschutzerklärung
i want none Cookie