LsaEnumerateAccountRights Function (Windows)

MSDN Home

MSDN
MSDN Library
Win32 and COM Development
Security
Security Management
Security Management Reference
Security Management Functions

Security Management Functio ...

InitializeChangeNotify
LsaAddAccountRights
LsaClose
LsaCreateTrustedDomainEx
LsaDeleteTrustedDomain
LsaEnumerateAccountRights
LsaEnumerateAccountsWithUserRi ...
LsaEnumerateTrustedDomains
LsaEnumerateTrustedDomainsEx
LsaFreeMemory
LsaLookupNames
LsaLookupNames2
LsaLookupPrivilegeValue
LsaLookupSids
LsaNtStatusToWinError
LsaOpenTrustedDomainByName
LsaQueryTrustedDomainInfo
LsaQueryTrustedDomainInfoByNam ...
LsaRegisterPolicyChangeNotific ...
LsaRemoveAccountRights
LsaRetrievePrivateData
LsaSetTrustedDomainInfoByName
LsaSetTrustedDomainInformation
LsaStorePrivateData
LsaUnregisterPolicyChangeNotif ...
NetAddServiceAccount
NetEnumerateServiceAccounts
NetIsServiceAccount
NetQueryServiceAccount
NetRemoveServiceAccount
PasswordChangeNotify
PasswordFilter
PFSCE_FREE_INFO
PFSCE_LOG_INFO
PFSCE_QUERY_INFO
PFSCE_SET_INFO
SaferCloseLevel
SaferComputeTokenFromLevel
SaferCreateLevel
SaferGetLevelInformation
SaferGetPolicyInformation
SaferIdentifyLevel
SaferiIsExecutableFileType
SaferRecordEventLogEntry
SceSvcAttachmentAnalyze
SceSvcAttachmentConfig
SceSvcAttachmentUpdate

Switch View :

Classic

Lightweight Beta

ScriptFree

Feedback

LsaEnumerateAccountRights Function

The LsaEnumerateAccountRights function enumerates the privileges assigned to an account.

Syntax

C++

NTSTATUS LsaEnumerateAccountRights(
  __in   LSA_HANDLE PolicyHandle,
  __in   PSID AccountSid,
  __out  PLSA_UNICODE_STRING *UserRights,
  __out  PULONG CountOfRights
);

Parameters

PolicyHandle [in]

A handle to a Policy object. The handle must have the POLICY_LOOKUP_NAMES access right. For more information, see Opening a Policy Object Handle.

AccountSid [in]

Pointer to the SID of the account for which to enumerate privileges.

UserRights [out]

Receives a pointer to an array of LSA_UNICODE_STRING structures. Each structure contains the name of a privilege held by the account. For a list of privilege names, see Privilege Constants

When you no longer need the information, pass the returned pointer to LsaFreeMemory.

CountOfRights [out]

Pointer to a variable that receives the number of privileges in the UserRights array.

Return Value

If at least one account right is found, the function succeeds and returns STATUS_SUCCESS.

If no account rights are found or if the function fails for any other reason, the function returns an NTSTATUS code such as FILE_NOT_FOUND. For more information, see LSA Policy Function Return Values. Use the LsaNtStatusToWinError function to convert the NTSTATUS code to a Windows error code.

Requirements

Minimum supported client	Windows 2000 Professional
Minimum supported server	Windows 2000 Server
Header	Ntsecapi.h
Library	Advapi32.lib
DLL	Advapi32.dll

Syntax

Parameters

Return Value

Requirements

See Also