2.2.1.7 User ACCESS_MASK Values
These are the specific values available to describe the access control on a user object. A bitwise OR operation can be performed on these values, along with values from section 2.2.1.1. For more information on the message processing of these values, see section 3.1.5.1.9.
|
Constant/value |
Description |
|---|---|
|
USER_READ_GENERAL 0x00000001 |
Specifies the ability to read sundry attributes. |
|
USER_READ_PREFERENCES 0x00000002 |
Specifies the ability to read general information attributes. |
|
USER_WRITE_PREFERENCES 0x00000004 |
Specifies the ability to write general information attributes. |
|
USER_READ_LOGON 0x00000008 |
Specifies the ability to read attributes related to logon statistics. |
|
USER_READ_ACCOUNT 0x00000010 |
Specifies the ability to read attributes related to the administration of the user object. |
|
USER_WRITE_ACCOUNT 0x00000020 |
Specifies the ability to write attributes related to the administration of the user object. |
|
USER_CHANGE_PASSWORD 0x00000040 |
Specifies the ability to change the user's password. |
|
USER_FORCE_PASSWORD_CHANGE 0x00000080 |
Specifies the ability to set the user's password. |
|
USER_LIST_GROUPS 0x00000100 |
Specifies the ability to query the membership of the user object. |
|
USER_READ_GROUP_INFORMATION 0x00000200 |
Does not specify any access control. |
|
USER_WRITE_GROUP_INFORMATION 0x00000400 |
Does not specify any access control. |
|
USER_ALL_ACCESS 0x000F07FF |
The specified accesses for a GENERIC_ALL request. |
|
USER_READ 0x0002031A |
The specified accesses for a GENERIC_READ request. |
|
USER_WRITE 0x00020044 |
The specified accesses for a GENERIC_WRITE request. |
|
USER_EXECUTE 0x00020041 |
The specified accesses for a GENERIC_EXECUTE request. |