Each time a server program receives a client request for access to one of the management remote procedures, the RPC run-time library invokes a default authorization function. This function uses the SSP to check the client's credentials and authorize or reject the request.
Your server program can override the authorization function that the SSP provides. Invoke the function RpcMgmtSetAuthorizationFn and pass it to the address of your authorization function. Once the server program sets the authorization function, the RPC run-time library calls it every time the server program receives a client request to one of the management functions. For more information, see RpcMgmtIsServerListening, RpcMgmtStopServerListening, RpcMgmtInqIfIds, RpcMgmtInqServerPrincName, and RpcMgmtInqStats.