Export (0) Print
Expand All
Expand Minimize

RtlCreateSecurityDescriptor routine

The RtlCreateSecurityDescriptor routine initializes a new absolute-format security descriptor. On return, the security descriptor is initialized with no system ACL, no discretionary ACL, no owner, no primary group, and all control flags set to zero.

Syntax


NTSTATUS RtlCreateSecurityDescriptor(
  _Out_ PSECURITY_DESCRIPTOR SecurityDescriptor,
  _In_  ULONG                Revision
);

Parameters

SecurityDescriptor [out]

Pointer to the buffer for the SECURITY_DESCRIPTOR to be initialized.

Revision [in]

Specifies the revision level to assign to the security descriptor. Set this parameter to SECURITY_DESCRIPTOR_REVISION.

Return value

RtlCreateSecurityDescriptor can return one of the following.

Return codeDescription
STATUS_SUCCESS

The call completed successfully.

STATUS_UNKNOWN_REVISION

The caller specified an unsupported value for Revision.

 

Remarks

A successful call to this routine initializes a security descriptor. The fields in this descriptor are set to initial values that indicate that there are no security constraints.

Requirements

Target platform

Universal

Version

Available in Windows 2000 and later versions of Windows.

Header

Wdm.h (include Wdm.h, Ntddk.h, or Ntifs.h)

Library

Ntoskrnl.lib

IRQL

PASSIVE_LEVEL

See also

RtlLengthSecurityDescriptor
RtlSetDaclSecurityDescriptor
RtlValidSecurityDescriptor
SECURITY_DESCRIPTOR

 

 

Send comments about this topic to Microsoft

Show:
© 2015 Microsoft