internal static extern NtStatus LsaRemoveAccountRights(
SafeLsaHandle PolicyHandle,
SafeSidBufferHandle AccountSid,
[MarshalAs(UnmanagedType.U1)] bool AllRights,
[In] UnicodeStringIn[] UserRights,
int CountOfRights
);
internal static extern Win32Error EventAccessControl(
ref Guid Guid,
EventSecurityOperation Operation,
SafeSidBufferHandle Sid,
AccessMask Rights,
[MarshalAs(UnmanagedType.U1)] bool AllowOrDeny
);
internal static extern NtStatus CreateAppContainerProfile(
string pszAppContainerName,
string pszDisplayName,
string pszDescription,
SidAndAttributes[] pCapabilities,
int dwCapabilityCount,
out SafeSidBufferHandle ppSidAppContainerSid
);
internal static extern bool AuthzInitializeContextFromSid(
AuthZContextInitializeSidFlags Flags,
SafeSidBufferHandle UserSid,
SafeAuthZResourceManagerHandle hAuthzResourceManager,
LargeInteger pExpirationTime,
Luid Identifier,
IntPtr DynamicGroupArgs,
out SafeAuthZClientContextHandle phAuthzClientContext
);
public static extern NtStatus NtAlpcConnectPort(
out SafeKernelObjectHandle PortHandle,
[In] UnicodeString PortName,
[In] ObjectAttributes ObjectAttributes,
[In] AlpcPortAttributes PortAttributes,
AlpcMessageFlags Flags,
[In] SafeSidBufferHandle RequiredServerSid,
[In, Out] SafeAlpcPortMessageBuffer ConnectionMessage,
[In, Out] OptionalLength BufferLength,
[In, Out] SafeAlpcMessageAttributesBuffer OutMessageAttributes,
[In, Out] SafeAlpcMessageAttributesBuffer InMessageAttributes,
[In] LargeInteger Timeout
);
internal static extern NtStatus LsaOpenTrustedDomain(
SafeLsaHandle PolicyHandle,
SafeSidBufferHandle TrustedDomainSid,
LsaTrustedDomainAccessRights DesiredAccess,
out SafeLsaHandle TrustedDomainHandle
);
internal static extern NtStatus LsaOpenAccount(
SafeLsaHandle PolicyHandle,
SafeSidBufferHandle AccountSid,
LsaAccountAccessRights DesiredAccess,
out SafeLsaHandle AccountHandle
);
internal static extern NtStatus LsaAddAccountRights(
SafeLsaHandle PolicyHandle,
SafeSidBufferHandle AccountSid,
[In] UnicodeStringIn[] UserRights,
int CountOfRights
);
internal static extern NtStatus LsaEnumerateAccountRights(
SafeLsaHandle PolicyHandle,
SafeSidBufferHandle AccountSid,
out SafeLsaMemoryBuffer UserRights,
out int CountOfRights
);
internal static extern bool AuditSetPerUserPolicy(
SafeSidBufferHandle pSid,
AUDIT_POLICY_INFORMATION[] pAuditPolicy,
int dwPolicyCount
);
internal static extern bool AuthzSetAppContainerInformation(
SafeAuthZClientContextHandle hAuthzClientContext,
SafeSidBufferHandle pAppContainerSid,
int CapabilityCount,
SafeBuffer pCapabilitySids
);
internal static extern bool LookupAccountSid(string lpSystemName, SafeSidBufferHandle lpSid, StringBuilder lpName,
ref int cchName, StringBuilder lpReferencedDomainName, ref int cchReferencedDomainName, out SidNameUse peUse);
internal static extern int DeriveRestrictedAppContainerSidFromAppContainerSidAndRestrictedName(
SafeSidBufferHandle psidAppContainerSid,
string pszRestrictedAppContainerName,
out SafeSidBufferHandle ppsidRestrictedAppContainerSid
);
internal static extern int DeriveAppContainerSidFromAppContainerName(
string pszAppContainerName,
out SafeSidBufferHandle ppsidAppContainerSid
);
internal static extern NtStatus LsaQueryTrustedDomainInfo(
SafeLsaHandle PolicyHandle,
SafeSidBufferHandle TrustedDomainSid,
TRUSTED_INFORMATION_CLASS InformationClass,
out SafeLsaMemoryBuffer Buffer
);
internal static extern bool AuditQueryPerUserPolicy(
SafeSidBufferHandle pSid,
Guid[] pSubCategoryGuids,
int dwPolicyCount,
out SafeAuditBuffer ppAuditPolicy
);
internal static extern NtStatus SamOpenDomain(
SafeSamHandle ServerHandle,
SamDomainAccessRights DesiredAccess,
SafeSidBufferHandle DomainId,
out SafeSamHandle DomainHandle
);
private LsaTrustedDomainInformation QueryDomainInfo(SafeSidBufferHandle sid_buffer)
{
return(SecurityNativeMethods.LsaQueryTrustedDomainInfo(Handle, sid_buffer,
TRUSTED_INFORMATION_CLASS.TrustedDomainInformationEx, out SafeLsaMemoryBuffer buffer)
.CreateResult(false, () => QueryDomainInfo(buffer)).GetResultOrDefault());
}
