MSDN Library

Windows Development

Security and Identity

Authentication

Authentication Reference

Authentication Functions

AcceptSecurityContext (General)

AcquireCredentialsHandle (General)

AddConnectNotify

AddSecurityPackage

AddCredential

AllocateClientBuffer

AllocateHeap

AllocateLsaHeap

AllocatePrivateHeap

AllocateSharedMemory

ApplyControlToken

AuditAccountLogon

AuditLogon

CallPackage

CallPackageEx

CallPackagePassthrough

CancelConnectNotify

CancelNotification

ChangeAccountPassword

ClientCallback

ClientCallback_Function

CloseSamUser

CompleteAuthToken

ConvertAuthDataToToken

CopyFromClientBuffer

CopyToClientBuffer

CrackSingleName

CreateLogonSession

CreateSharedMemory

CreateThread

CreateToken

CreateTokenEx

CredDelete

CredEnumerate

CredFindBestCredential

CredFree

CredGetSessionTypes

CredGetTargetInfo

CrediFreeCredentials

CrediRead

CrediReadDomainCredentials

CrediUnmarshalandDecodeString

CrediWrite

CredIsMarshaledCredential

CredIsProtected

CredMarshalCredential

CredMarshalTargetInfo

CredPackAuthenticationBuffer

CredProtect

CredRead

CredReadDomainCredentials

CredRename

CredUICmdLinePromptForCredentials

CredUIConfirmCredentials

CredUIParseUserName

CredUIPromptForCredentials

CredUIPromptForWindowsCredentials

CredUIReadSSOCredW

CredUIStoreSSOCredW

CredUnmarshalCredential

CredUnPackAuthenticationBuffer

CredUnprotect

CredWrite

CredWriteDomainCredentials

DecryptMessage (General)

DeleteConnectedIdentity

DeleteCredential

DeleteLogonSession

DeleteSecurityContext

DeleteSecurityPackage

DeleteSharedMemory

DuplicateHandle

EncryptMessage (General)

EnumerateSecurityPackages

ExpandAuthDataForDomain

ExportSecurityContext

FreeClientBuffer

FreeContextBuffer

FreeCredentialsHandle

FreeHeap

FreeLsaHeap

FreePrivateHeap

FreeReturnBuffer

FreeSharedMemory

GetAuthDataForUser

GetCallInfo

GetCertificateFromCred

GetClientInfo

GetCredentialKey

GetCredentials

GetOpenCardName

GetUserAuthData

ImpersonateClient

ImpersonateSecurityContext

ImportSecurityContext

InitializeSecurityContext (General)

InitSecurityInterface

LogonUser

LogonUserEx

LogonUserExExW

LsaApCallPackage

LsaApCallPackagePassthrough

LsaApCallPackageUntrusted

LsaApInitializePackage

LsaApLogonTerminated

LsaApLogonUser

LsaApLogonUserEx

LsaApLogonUserEx2

LsaCallAuthenticationPackage

LsaConnectUntrusted

LsaDeregisterLogonProcess

LsaEnumerateLogonSessions

LsaFreeReturnBuffer

LsaGetAppliedCAPIDs

LsaGetLogonSessionData

LsaLogonUser

LsaLookupAuthenticationPackage

LsaOpenPolicy

LsaProtectMemory

LsaQueryDomainInformationPolicy

LsaQueryForestTrustInformation

LsaQueryInformationPolicy

LsaRegisterLogonProcess

LsaSetDomainInformationPolicy

LsaSetForestTrustInformation

LsaSetInformationPolicy

LsaUnprotectMemory

MakeSignature

MapBuffer

Msv1_0SubAuthenticationFilter

Msv1_0SubAuthenticationRoutine

Msv1_0SubAuthenticationRoutineGeneric

Msv1_0SubAuthenticationRoutineEx

NPAddConnection

NPAddConnection3

NPCancelConnection

NPCloseEnum

NPDeviceMode

NPDirectoryNotify

NPEnumResource

NPFMXEditPerm

NPFMXGetPermCaps

NPFMXGetPermHelp

NPFormatNetworkName

NPGetCaps

NPGetConnection

NPGetConnection3

NPGetConnectionPerformance

NPGetDirectoryType

NPGetPropertyText

NPGetResourceInformation

NPGetResourceParent

NPGetUniversalName

NPGetUser

NPLogonNotify

NPOpenEnum

NPPasswordChangeNotify

NPPropertyDialog

NPSearchDialog

OnProfileLoaded

OpenSamUser

OpenTokenByLogonId

PstAcquirePrivateKey

PstGetCertificates

PstGetTrustAnchors

PstGetUserNameForCertificate

PstMapCertificate

PstValidate

QueryContextAttributes (General)

QueryCredentialsAttributes

QuerySecurityContextToken

QuerySecurityPackageInfo

RegisterCallback

RegisterNotification

RevertSecurityContext

SaslAcceptSecurityContext

SaslEnumerateProfiles

SaslGetContextOption

SaslGetProfilePackage

SaslIdentifyPackage

SaslInitializeSecurityContext

SaslSetContextOption

SCardAccessStartedEvent

SCardAddReaderToGroup

SCardBeginTransaction

SCardCancel

SCardConnect

SCardControl

SCardDisconnect

SCardEndTransaction

SCardEstablishContext

SCardForgetCardType

SCardForgetReader

SCardForgetReaderGroup

SCardFreeMemory

SCardGetAttrib

SCardGetCardTypeProviderName

SCardGetDeviceTypeId

SCardGetProviderId

SCardGetReaderDeviceInstanceId

SCardGetReaderIcon

SCardGetStatusChange

SCardGetTransmitCount

SCardIntroduceCardType

SCardIntroduceReader

SCardIntroduceReaderGroup

SCardIsValidContext

SCardListCards

SCardListInterfaces

SCardListReaderGroups

SCardListReaders

SCardListReadersWithDeviceInstanceId

SCardLocateCards

SCardLocateCardsByATR

SCardReadCache

SCardReconnect

SCardReleaseContext

SCardReleaseStartedEvent

SCardRemoveReaderFromGroup

SCardSetAttrib

SCardSetCardTypeProviderName

SCardStatus

SCardTransmit

SCardWriteCache

SCardUIDlgSelectCard

SendSAS

SetContextAttributes

SetCredentialsAttributes

SpAcceptCredentials

SpAcceptLsaModeContext

SpAcquireCredentialsHandle

SpAddCredentials

SpApplyControlToken

SpCompleteAuthToken

SpDeleteContext

SpDeleteCredentials

SpExchangeMetaDataFn

SpExportSecurityContext

SpFormatCredentials

SpFreeCredentialsHandle

SpGetContextToken

SpGetCredentials

SpGetCredUIContextFn

SpGetExtendedInformation

SpGetInfo

SpGetUserInfo

SpImportSecurityContext

SpInitialize

SpInitLsaModeContext

SpInitUserModeContext

SpInstanceInit

SpLsaModeInitialize

SpMakeSignature

SpMarshallSupplementalCreds

SpQueryContextAttributes

SpQueryCredentialsAttributes

SpQueryMetaDataFn

SpSaveCredentials

SpSealMessage

SpSetExtendedInformation

SpShutDown

SpUnsealMessage

SpUpdateCredentialsFn

SpUserModeInitialize

SpValidateTargetInfoFn

SpVerifySignature

SslCrackCertificate

SslEmptyCache

SslFreeCertificate

SslGetServerIdentity

SspiCompareAuthIdentities

SspiCopyAuthIdentity

SspiDecryptAuthIdentity

SspiDecryptAuthIdentityEx

SspiEncodeAuthIdentityAsStrings

SspiEncodeStringsAsAuthIdentity

SspiEncryptAuthIdentity

SspiEncryptAuthIdentityEx

SspiExcludePackage

SspiFreeAuthIdentity

SspiGetCredUIContext

SspiGetTargetHostName

SspiIsAuthIdentityEncrypted

SspiIsPromptingNeeded

SspiLocalFree

SspiMarshalAuthIdentity

SspiPrepareForCredRead

SspiPrepareForCredWrite

SspiPromptForCredentials

SspiUnmarshalAuthIdentity

SspiUnmarshalCredUIContext

SspiUpdateCredentials

SspiValidateAuthIdentity

SspiZeroAuthIdentity

UnloadPackage

UpdateCredentials

VerifySignature

WlxActivateUserShell

WlxAssignShellProtection

WlxChangePasswordNotify

WlxChangePasswordNotifyEx

WlxCloseUserDesktop

WlxCreateUserDesktop

WlxDialogBox

WlxDialogBoxIndirect

WlxDialogBoxIndirectParam

WlxDialogBoxParam

WlxDisconnect

WlxDisplayLockedNotice

WlxDisplaySASNotice

WlxDisplayStatusMessage

WlxGetConsoleSwitchCredentials

WlxGetOption

WlxGetSourceDesktop

WlxGetStatusMessage

WlxInitialize

WlxIsLockOk

WlxIsLogoffOk

WlxLoggedOnSAS

WlxLoggedOutSAS

WlxLogoff

WlxMessageBox

WlxNegotiate

WlxNetworkProviderLoad

WlxQueryClientCredentials

WlxQueryConsoleSwitchCredentials

WlxQueryInetConnectorCredentials

WlxQueryTerminalServicesData

WlxQueryTsLogonCredentials

WlxRemoveStatusMessage

WlxSasNotify

WlxScreenSaverNotify

WlxSetContextPointer

WlxSetOption

WlxSetReturnDesktop

WlxSetTimeout

WlxShutdown

WlxStartApplication

WlxSwitchDesktopToUser

WlxSwitchDesktopToWinlogon

WlxUseCtrlAltDel

WlxWin31Migrate

WlxWkstaLockedSAS

WNetSetLastError

Community Content

Add code samples and tips to enhance this topic.

More...

This topic has not yet been rated - Rate this topic

SpSealMessage function

Applies to: desktop apps only

Encrypts a message exchanged between a client and server.

The SpSealMessage function is the dispatch function for the EncryptMessage (General) function of the Security Support Provider Interface.

Syntax

Copy

NTSTATUS SpSealMessage(
  __in     LSA_SEC_HANDLE ContextHandle,
  __in     ULONG QualityOfProtection,
  __inout  PSecBufferDesc MessageBuffers,
  __in     ULONG MessageSequenceNumber
);

Parameters

ContextHandle [in]: Handle of the security context used to sign the message.
QualityOfProtection [in]: Specifies package-specific flags that indicate the quality of protection. An SSP/AP can use this parameter to enable the selection of cryptographic algorithms.
MessageBuffers [in, out]: Pointer to a SecBufferDesc structure that contains message buffers. Only one of these message buffers can be of type SECBUFFER_DATA, and it contains the message to be encrypted. The buffer cannot have the SECBUFFER_READONLY attribute because the encryption is done in-place.
MessageSequenceNumber [in]: Sequence number to assign to the message. Sequence numbers are optional and are used as protection against loss and insertion of messages. A value of zero indicates that sequence numbers are not in use.

Return value

If the function succeeds, return STATUS_SUCCESS.

If the function fails, return an NTSTATUS code that indicates the reason it failed. The following table lists common reasons for failure and the error codes that the function should return.

Return code	Description
STATUS_INVALID_HANDLE	The context could not be found or was not configured for message integrity.
STATUS_INVALID_PARAMETER	The signature buffer could not be found or was too small.

Remarks

Messages encrypted by the sender using the SpSealMessage function are decrypted using the SpUnsealMessage function.

SSP/APs must implement the SpSealMessage function; however, the actual name given to the implementation is up to the developer.

A pointer to the SpSealMessage function is available in the SECPKG_USER_FUNCTION_TABLE structure received from the SpUserModeInitialize function.

Requirements

Minimum supported client	Windows 2000 Professional
Minimum supported server	Windows 2000 Server
Header	Ntsecpkg.h

See also

SECPKG_USER_FUNCTION_TABLE
SpUnsealMessage
SpUserModeInitialize

Send comments about this topic to Microsoft

Build date: 3/13/2012

Did you find this helpful? Yes No

Not accurate

Not enough depth

Need more code examples

(1500 characters remaining)

Community Content Add

Annotations

FAQ

© 2012 Microsoft. All rights reserved.

Terms of Use | Trademarks | Privacy Statement | Site Feedback Site Feedback

Site Feedback

x

Tell us about your experience...

Did the page load quickly?

Yes No

Do you like the page design?

Yes No

Tell us more