The EqualPrefixSid function tests two security-identifier (SID) prefix values for equality. A SID prefix is the entire SID except for the last subauthority value.
BOOL EqualPrefixSid(
PSID pSid1, |
// pointer to first SID to compare |
PSID pSid2 |
// pointer to second SID to compare |
); |
If the SID prefixes are equal, the return value is nonzero.
If the SID prefixes are not equal, the return value is zero. To get extended error information, call GetLastError.
The EqualPrefixSid function enables a server application in one domain to verify an attempt by a user to log on to another domain. For example, if a user attempts to log on to RemoteDomain from a workstation in LocalDomain, the server for LocalDomain can request the SIDs for the user and the user’s groups from RemoteDomain. The domain controller for RemoteDomain responds with the relevant SIDs.
All SIDs for a specified domain necessarily have the same prefix. When the server receives the user’s SIDs, it can call the EqualPrefixSid function for each SID, comparing the user or group SID against the SID for RemoteDomain. If any of the SID prefixes are not equal, the server refuses the logon attempt.
It is advisable to modify the SID for a domain before comparing it with a group or user SID. If the SID for RemoteDomain is S-1-1234-8, each group or user SID for that domain will have S-1-1234-8 as its prefix. To compare the SIDs by using the EqualPrefixSid function, an application copies the domain SID and adds any subauthority (RID) value to the copy, thereby creating a SID in the form S-1-1234-8-0. The application then uses the modified domain SID as a template against which the group and user SIDs are compared.
CopySid, EqualSid, IsValidSid, SID
file: /Techref/os/win/api/win32/func/src/f22_8.htm, 3KB, , updated: 2000/4/7 11:19, local time: 2024/11/23 08:43,
52.14.6.41:LOG IN
|
©2024 These pages are served without commercial sponsorship. (No popup ads, etc...).Bandwidth abuse increases hosting cost forcing sponsorship or shutdown. This server aggressively defends against automated copying for any reason including offline viewing, duplication, etc... Please respect this requirement and DO NOT RIP THIS SITE. Questions? <A HREF="http://sxlist.com/techref/os/win/api/win32/func/src/f22_8.htm"> EqualPrefixSid</A> |
Did you find what you needed? |
Welcome to sxlist.com!sales, advertizing, & kind contributors just like you! Please don't rip/copy (here's why Copies of the site on CD are available at minimal cost. |
Welcome to sxlist.com! |
.