RPC_C_IMP_LEVEL_xxx
Used in the
security functions and interfaces to specify the authentication level.
Values
RPC_C_IMP_LEVEL_ANONYMOUS
(Not
supported in this release.) The client is anonymous to the server. The server
process cannot obtain identification information about the client and it cannot
impersonate the client.
RPC_C_IMP_LEVEL_IDENTIFY
The server
can obtain the client s identity. The server can impersonate the client for ACL
checking, but cannot access system objects as the client. This information is
obtained when the connection is established, not on every call.
Note GetUserName
will fail while impersonating at identify level. The workaround is to impersonate, OpenThreadToken,
revert, call GetTokenInformation, and finally, call LookupAccountSid.
RPC_C_IMP_LEVEL_IMPERSONATE
The server
process can impersonate the client's security context while acting on behalf of
the client. This information is obtained when the connection is established,
not on every call.
RPC_C_IMP_LEVEL_DELEGATE
(Not
supported in this release.) The server process can impersonate the client's
security context while acting on behalf of the client. The server process can
also make outgoing calls to other servers while acting on behalf of the client.
This information is obtained when the connection is established, not on every
call.
Comments
Only the
RPC_C_IMP_LEVEL_IDENTIFY and RPC_C_IMP_LEVEL_IMPERSONATE levels are supported
in NT 4.0.
See Also