3.3.5.6.4.5 UPN_DNS_INFO Structure

The KDC SHOULD<57> populate the returned UPN_DNS_INFO structure ([MS-PAC] section 2.10) fields as follows:

• The UpnLength field is the length of the UPN field, in bytes.

• The UpnOffset field is the offset of the UPN field to the beginning of the buffer, in bytes, from the beginning of the UPN_DNS_INFO structure.

• The DnsDomainNameLength field is the length of the DnsDomainName field, in bytes.

• The DnsDomainNameOffset field is the offset of the DnsDomainName field to the beginning of the buffer, in bytes, from the beginning of the UPN_DNS_INFO structure.

• The Flags field is set the U bit if the user account object does not have the userPrincipalName attribute ([MS-ADA3] section 2.349) set.

The KDC inserts the DNS and UPN information after the UPN_DNS_INFO structure following the header and starting with the corresponding offset in a consecutive buffer. The UPN and FQDN are encoded using a two-byte UTF16 scheme, in little-endian order.