3.1.5.4.2 SamrCreateGroupInDomain (Opnum 10)
The SamrCreateGroupInDomain method creates a group object within a domain.
-
long SamrCreateGroupInDomain( [in] SAMPR_HANDLE DomainHandle, [in] PRPC_UNICODE_STRING Name, [in] unsigned long DesiredAccess, [out] SAMPR_HANDLE* GroupHandle, [out] unsigned long* RelativeId );
DomainHandle: An RPC context handle, as specified in section 2.2.7.2, representing a domain object.
Name: The value to use as the name of the group. Details on how this value maps to the data model are provided later in this section.
DesiredAccess: The access requested on the GroupHandle on output. See section 2.2.1.5 for a listing of possible values.
GroupHandle: An RPC context handle, as specified in section 2.2.7.2.
RelativeId: The RID of the newly created group.
This protocol asks the RPC runtime, via the strict_context_handle attribute, to reject the use of context handles created by a method of a different RPC interface than this one, as specified in [MS-RPCE] section 3.
This method MUST be processed per the specifications in section 3.1.5.4.1, using a group type of GROUP_TYPE_SECURITY_ACCOUNT and using access mask values from section 2.2.1.5.