WSPP Technical Specifications Task and Scenario
The WSPP Technical Specifications include the file & print and user & group administration protocols disclosed by Microsoft pursuant to Article 5 of the Commission of the European Communities Decision dated March 24, 2004.
To review the WSPP overview and reference documents and the technical specifications, click this link: WSPP Technical Specifications .zip file (all documents – 275+ MB).
The following table organizes the WSPP Technical Specifications by task and scenario.
A task is a collection of protocols used to implement a specific but fairly broad system function. The relevant tasks include:
A scenario is a more limited set of functions that is part of a specific task. The relevant scenarios include:
File & Print Scenarios:
User and Group Administration Scenarios:
Technical Specifications
FILE AND PRINT TASK PROTOCOLS
Base File Server Protocols Scenario
Protocols used to provide basic file service operations to other Windows client and server computers on a network.
| Specification | Description |
|---|---|
| [MS-BRWS]: Common Internet File System (CIFS) Browser Protocol Specification | Specifies the Common Internet File System (CIFS) Browser Protocol, which updates all backup browser servers with the contents of the response to a NetServerEnum2 request and shares the processing load of enumerating the services available in the network across different servers. |
| [MS-BRWSA]: Common Internet File System (CIFS) Browser Auxiliary Protocol Specification | Specifies the Common Internet File System (CIFS) Browser Auxiliary Protocol, which is used by the master browser server to query configuration information for the domains from the domain master browser server. |
| [MS-CIFS]: Common Internet File System (CIFS) Protocol | Specifies the Common Internet File System (CIFS) Protocol, a cross-platform, transport-independent protocol that provides a mechanism for client systems to use file and print services made available by server systems over a network. |
| [MS-DLTCS]: Distributed Link Tracking Central Store Protocol Specification | Specifies the Distributed Link Tracking Central Store Protocol, which defines how the Active Directory objects are defined, updated, and interpreted. [MS-DLTCS] works with the Distributed Link Tracking (DLT) Workstation Protocol and the DLT Central Manager Protocol ([MS-DLTM]), the two other protocols that make up Distributed Link Tracking. |
| [MS-DLTM]: Distributed Link Tracking: Central Manager Protocol Specification | Specifies the Distributed Link Tracking: Central Manager Protocol, which works with the Distributed Link Tracking (DLT) Workstation Protocol to discover the new location of a file that has moved. DLT can determine whether the file has moved on a mass-storage device, within a computer, or between computers in a network. The DLT Central Manager Protocol keeps track of file and volume moves and other relevant information from participating computers in order to provide this information in response to workstation queries. |
| [MS-DLTW]: Distributed Link Tracking: Workstation Protocol Specification | Specifies the Distributed Link Tracking: Workstation Protocol, which works with the Distributed Link Tracking (DLT) Central Manager Protocol to discover the new location of a file that has moved. DLT can determine whether the file has moved on a mass-storage device, within a computer, or between computers in a network. |
| [MS-DMRP]: Disk Management Remote Protocol Specification | Specifies the Disk Management Remote Protocol Specification, a set of Distributed Component Object Model (DCOM) interfaces that manages storage objects on a machine. |
| [MS-EFSR]: Encrypting File System Remote (EFSRPC) Protocol Specification | Specifies the Encrypting File System Remote (EFSRPC) Protocol, which performs maintenance and management operations on encrypted data that is stored remotely and accessed over a network. |
| [MS-FPSE]: FrontPage Server Extensions Remote Protocol Specification | Specifies the FrontPage Server Extensions Remote Protocol, which describes a set of server extensions that can be used to augment a basic HTTP server. |
| [MS-FSA]: File System Algorithms | Specifies File System Algorithms in terms of an abstract model for how an object store can be implemented to support the Server Message Block (SMB) Version 1.0 Protocol [MS-SMB] and the Server Message Block (SMB) Version 2.0 Protocol [MS-SMB2]. |
| [MS-FSCC]: File System Control Codes | Specifies the File System Control Codes that define the network format of native Windows structures that may be used within other protocols. |
| [MS-FSRVP]: File Server Remote VSS Protocol Specification | Specifies the File Server Remote VSS Protocol, an RPC-based protocol used for creating shadow copies of file shares on a remote computer, and for facilitating backup applications in performing application-consistent backup and restore of data on SMB2 shares. |
| [MS-MAIL]: Remote Mailslot Protocol Specification | Specifies the Remote Mailslot Protocol. This protocol is a simple, nonsecure, and unidirectional interprocess communications (IPC) protocol between a client and server. |
| [MS-MCIS]: Content Indexing Services Protocol Specification | Specifies the Content Indexing Services Protocol, which enables a client to communicate with a server hosting an indexing service to issue queries. |
| [MS-RAP]: Remote Administration Protocol Specification | Specifies the Microsoft Remote Administration Protocol (RAP), which Microsoft LAN Manager uses to perform remote administrative functions and is included in the Microsoft Windows operating system for compatibility reasons. |
| [MS-RSMP]: Removable Storage Manager (RSM) Remote Protocol Specification | Specifies the Removable Storage Manager (RSM) Remote Protocol, a set of distributed component object model (DCOM) interfaces for applications to manage robotic changers, media libraries, and tape drives. This protocol deals with detailed low-level operating system and storage concepts. |
| [MS-SMB]: Server Message Block (SMB) Protocol Specification | Specifies the Server Message Block (SMB) Protocol, which defines extensions to the existing Common Internet File System (CIFS) specification that have been implemented by Microsoft since the publication of the [CIFS] specification. |
| [MS-SRVS]: Server Service Remote Protocol Specification | Specifies the Server Service Remote Protocol, which remotely enables file and printer sharing and named pipe access to the server through the Server Message Block Protocol. |
| [MS-TDS]: Tabular Data Stream Protocol Specification | Specifies the Tabular Data Stream Protocol, which facilitates interaction with a database server and provides for authentication and channel encryption negotiation; specification of requests in SQL (including Bulk Insert); invocation of a stored procedure, also known as a Remote Procedure Call (RPC); returning of data; and Transaction Manager Requests. It is an application layer request/response protocol. |
| [MS-VDS]: Virtual Disk Service (VDS) Protocol Specification | Specifies the Virtual Disk Service (VDS) Protocol, a set of distributed component object model (DCOM) interfaces for managing the configuration of disk storage. |
| [MS-WSMV]: Web Services Management Protocol Extensions for Windows Vista | Specifies the Web Services Management Protocol Extensions for Windows Vista, which provides Windows Vista extensions to the WS-Management Protocol, the WS-Management Binding Specification, and the WS-CIM Mapping Specification for accessing CIM objects as a Web service. |
| [MS-WSP]: Windows Search Protocol Specification | Specifies the Windows Search Protocol (WSP), which enables a client to communicate with a server hosting a Windows Search service (WSS) to issue queries. |
| [MS-WSSFO]: Windows SharePoint Services (WSS): File Operations Database Communications Protocol Specification | Specifies the Windows SharePoint Services (WSS): File Operations Database Communications Protocol. This protocol defines communication sequences used by Web Front End (WFE) and application servers to perform data query and update commands on Back End Database Servers (BEDS) as part of file, user, and group administration operations. |
| [MS-WSSFO2]: Windows SharePoint Services (WSS): File Operations Database Communications Version 2 Protocol Specification | Specifies the Windows SharePoint Services (WSS): File Operations Database Communications Version 2 Protocol. This protocol allows the communication sequences used by front-end Web servers to perform data query and update commands on back-end database servers as part of file, user, and group administration operations. |
| [MS-WSSFO3]: Windows SharePoint Services (WSS): File Operations Database Communications Version 3 Protocol Specification | Specifies the Windows SharePoint Services (WSS): File Operations Database Communications Protocol. This protocol provides communication sequences used by front-end web servers to perform data query and update commands on back-end database servers as part of file, user, and group administration operations. |
| [MS-WSSFOB]: Windows SharePoint Services (WSS): File Operations Database Communications Base Protocol Specification | Specifies the Windows SharePoint Services (WSS): File Operations Database Communications Base Protocol. This protocol allows the communication sequences used by front-end Web servers to perform data query and update commands on back-end database servers as part of file, user, and group administration operations. |
Distributed File System (DFS) + File Replication Service (FRS) Server Protocols Scenario
Protocols used between Windows servers to administer the management of files located on multiple connected computers accessed using a single namespace. Protocols used between Windows servers for automatic replication of files to across multiple connected servers.
| Specification | Description |
|---|---|
| [MS-BKUP]: Microsoft NT Backup File Structure | Specifies the Microsoft NT Backup File Structure protocol, which describes the network format of the Windows NT backup file format and its constituent structures that may be used in other protocols. |
| [MS-DFSC]: Distributed File System (DFS): Referral Protocol Specification | Specifies the Distributed File System (DFS): Referral Protocol, which enables file system clients to resolve names from a namespace distributed across many servers and geographies into local names on specific file servers. |
| [MS-DFSNM]: Distributed File System (DFS): Namespace Management Protocol Specification | Specifies the Microsoft Dynamic Host Configuration Protocol (DHCP) Server Management Protocol, which defines the RPC interfaces that provide methods for remotely accessing and administering the DHCP server. This protocol is a client/server protocol based on RPC that is used to configure, manage, and monitor a DHCP server. |
| [MS-FRS1]: File Replication Service Protocol Specification | Specifies the File Replication Service Protocol, which is a replication protocol that is used to replicate files and folders across one or more members in an Active Directory domain. It works to keep copies of a file system tree up to date on all members of a replication group, while allowing any member of the group to change the contents at any time. |
Print Remote Procedure Call Protocols Scenario
Protocols used to provide print services to other Windows clients and servers on a network.
| Specification | Description |
|---|---|
| [MS-EMF]: Enhanced Metafile Format | Specifies the Enhanced Metafile Format (EMF) structure, which can store a picture in device-independent form. |
| [MS-EMFPLUS]: Enhanced Metafile Format Plus Extensions | Specifies the Enhanced Metafile Format Plus Extensions, which defines a device-independent structure that encapsulates graphics commands and objects for storage or for sending to devices, such as displays and printers that support the drawing of images, graphics, and text. |
| [MS-EMFSPOOL]: Enhanced Metafile Spool Format | Specifies the Enhanced Metafile Spool Format. This structure specifies a metafile format that can store a print job in portable form . |
| [MS-PAN]: Print System Asynchronous Notification Protocol Specification | Specifies the [MS-PAN]: Print System Asynchronous Notification Protocol, an asynchronous protocol that clients use to receive print status notifications from a print server and send server-requested responses to those notifications back to the server. It is based on the Remote Procedure Call (RPC) protocol, as specified in [C706]. |
| [MS-PAR]: Print System Asynchronous Remote Protocol Specification | Specifies the Print System Asynchronous Remote Protocol, which defines the communication of print job processing and print system management information between a print client and a print server. |
| [MS-RPRN]: Print System Remote Protocol Specification | Specifies the Print System Remote Protocol, which defines the communication of print job processing and print system management between a print client and a print server. |
| [MS-WMF]: Windows Metafile Format | Specifies the Windows Metafile Format structure. A Windows metafile is a container for an image, which is defined by series of variable-length records, called metafile records. |
Internet Print Protocols Scenario
Protocols used to provide printing and print job management to Windows clients and servers over the Internet.
| Specification | Description |
|---|---|
| [MS-WPRN]: Web Point-and-Print Protocol Specification | Specifies the Web Point-and-Print Protocol, which is an HTTP-based protocol that clients use to download printer driver software from a server in the client network or from a Web site. This enables distribution of printer driver software using standard Web technologies. |
Advanced File Services Protocols Scenario
Protocols used to provide advanced file service operations to other Windows client and server computers on a network.
| Specification | Description |
|---|---|
| [MS-BKUP]: Microsoft NT Backup File Structure | Specifies the Microsoft NT Backup File Structure protocol, which describes the network format of the Windows NT backup file format and its constituent structures that may be used in other protocols. |
| [MS-BRWS]: Common Internet File System (CIFS) Browser Protocol Specification | Specifies the Common Internet File System (CIFS) Browser Protocol, which updates all backup browser servers with the contents of the response to a NetServerEnum2 request and shares the processing load of enumerating the services available in the network across different servers. |
| [MS-BRWSA]: Common Internet File System (CIFS) Browser Auxiliary Protocol Specification | Specifies the Common Internet File System (CIFS) Browser Auxiliary Protocol, which is used by the master browser server to query configuration information for the domains from the domain master browser server. |
| [MS-CFB]: Compound File Binary File Format | Specifies the Compound File Binary File Format, a general-purpose file format that provides a file-system-like structure within a file for the storage of arbitrary, application-specific streams of data. |
| [MS-CIFS]: Common Internet File System (CIFS) Protocol | Specifies the Common Internet File System (CIFS) Protocol, a cross-platform, transport-independent protocol that provides a mechanism for client systems to use file and print services made available by server systems over a network. |
| [MS-DFSRH]: DFS Replication Helper Protocol Specification | Specifies the DFS Replication Helper Protocol, which is made up of a set of distributed component object model (DCOM) interfaces for configuring and monitoring DFS Replication Helper Protocols on a server. |
| [MS-DLTCS]: Distributed Link Tracking Central Store Protocol Specification | Specifies the Distributed Link Tracking Central Store Protocol, which defines how the Active Directory objects are defined, updated, and interpreted. [MS-DLTCS] works with the Distributed Link Tracking (DLT) Workstation Protocol and the DLT Central Manager Protocol ([MS-DLTM]), the two other protocols that make up Distributed Link Tracking. |
| [MS-DLTM]: Distributed Link Tracking: Central Manager Protocol Specification | Specifies the Distributed Link Tracking: Central Manager Protocol, which works with the Distributed Link Tracking (DLT) Workstation Protocol to discover the new location of a file that has moved. DLT can determine whether the file has moved on a mass-storage device, within a computer, or between computers in a network. The DLT Central Manager Protocol keeps track of file and volume moves and other relevant information from participating computers in order to provide this information in response to workstation queries. |
| [MS-DLTW]: Distributed Link Tracking: Workstation Protocol Specification | Specifies the Distributed Link Tracking: Workstation Protocol, which works with the Distributed Link Tracking (DLT) Central Manager Protocol to discover the new location of a file that has moved. DLT can determine whether the file has moved on a mass-storage device, within a computer, or between computers in a network. |
| [MS-DMRP]: Disk Management Remote Protocol Specification | Specifies the Disk Management Remote Protocol Specification, a set of Distributed Component Object Model (DCOM) interfaces that manages storage objects on a machine. |
| [MS-DPWSRP]: Devices Profile for Web Services (DPWS): Shared Resource Publishing Data Structure | Specifies the DPWS: Shared Resource Publishing data structure. This data structure is used by the HomeGroup Protocol to advertise shared files and folders in a HomeGroup peer-to-peer network environment. |
| [MS-ECS]: Enterprise Client Synchronization Protocol | Specifies the Enterprise Client Sync protocol, which enables devices (such as tablets, PCs, or laptops) to synchronize files to and from a file server in a REST-based manner. |
| [MS-EFSR]: Encrypting File System Remote (EFSRPC) Protocol Specification | Specifies the Encrypting File System Remote (EFSRPC) Protocol, which performs maintenance and management operations on encrypted data that is stored remotely and accessed over a network. |
| [MS-FPSE]: FrontPage Server Extensions Remote Protocol Specification | Specifies the FrontPage Server Extensions Remote Protocol, which describes a set of server extensions that can be used to augment a basic HTTP server. |
| [MS-FRS2]: Distributed File System Replication Protocol | Specifies the Distributed File System Replication Protocol, which defines an RPC interface that replicates files between servers and enables the creation of multimaster optimistic file replication systems. |
| [MS-FSA]: File System Algorithms | Specifies File System Algorithms in terms of an abstract model for how an object store can be implemented to support the Server Message Block (SMB) Version 1.0 Protocol [MS-SMB] and the Server Message Block (SMB) Version 2.0 Protocol [MS-SMB2]. |
| [MS-FSCC]: File System Control Codes | Specifies the File System Control Codes that define the network format of native Windows structures that may be used within other protocols. |
| [MS-FSRVP]: File Server Remote VSS Protocol Specification | Specifies the File Server Remote VSS Protocol, an RPC-based protocol used for creating shadow copies of file shares on a remote computer, and for facilitating backup applications in performing application-consistent backup and restore of data on SMB2 shares. |
| [MS-FSVCA]: File Set Version Comparison Algorithms | Specifies the File Set Version Comparison Algorithms, which is used by the Enterprise Client Synchronization Protocol to build and serialize a compact representation of version state across a data set consisting of files and directories. |
| [MS-HVRS-Preview]: Hyper-V Remote Storage Profile | Specifies information regarding the implementation for hosting Hyper-V virtual machine files on Server Message Block (SMB) Version 3 shares. |
| [MS-MAIL]: Remote Mailslot Protocol Specification | Specifies the Remote Mailslot Protocol. This protocol is a simple, nonsecure, and unidirectional interprocess communications (IPC) protocol between a client and server. |
| [MS-MCIS]: Content Indexing Services Protocol Specification | Specifies the Content Indexing Services Protocol, which enables a client to communicate with a server hosting an indexing service to issue queries. |
| [MS-OAPX]: OAuth 2.0 Protocol Extensions | Specifies the OAuth 2.0 Protocol Extensions, which are used to extend the OAuth 2.0 Authorization Framework. These extensions enable authorization features such as resource specification, request identifiers, and login hints. |
| [MS-OAPXBC]: OAuth 2.0 Protocol Extensions for Broker Clients | Specifies the OAuth 2.0 Protocol Extensions for Broker Clients, extensions to [RFC6749] (The OAuth 2.0 Authorization Framework) that allow a broker client to obtain access tokens on behalf of calling clients. |
| [MS-OLEPS]: Object Linking and Embedding (OLE) Property Set Data Structures | Specifies the Object Linking and Embedding (OLE): Property Set Data Structures. These structures enable applications to write metadata in a manner that is discoverable to other software. |
| [MS-PBSD]: Publication Services Data Structure | Specifies the Publication Services Data Structure. This structure describes the data that computers use to describe themselves and the resources they offer as Web services over IP-based networks. |
| [MS-PCCRC]: Peer Content Caching and Retrieval: Content Identification | Specifies Peer Content Caching and Retrieval: Content Identification, the content information format used by the Windows Branch Caching Framework to uniquely identify content for discovery and retrieval purposes. |
| [MS-PCCRTP]: Peer Content Caching and Retrieval: HTTP Extensions | Specifies the Peer Content Caching and Retrieval: HTTP Extensions, which implements a new type of content encoding, PeerDist, that can be used in HTTP/1.1. In particular, it specifies the mechanism used by an HTTP/1.1 client and an HTTP/1.1 server to communicate with each other by using the PeerDist content encoding. |
| [MS-PNRP]: Peer Name Resolution Protocol (PNRP) Version 4.0 Specification | Specifies the Peer Name Resolution Protocol (PNRP) Version 4.0, which is used to resolve a name to a set of information, such as IP addresses; to maintain a cloud of peer nodes; to maintain a distributed cache of endpoint information; and to transfer requests for Peer Name resolutions between nodes. |
| [MS-PROPSTORE]: Property Store Binary File Format | Specifies the Property Store Binary File Format. This file format is a persistence format for a set of properties. Implementers can use this file format to store a set of properties in a file or within another structure. |
| [MS-RAP]: Remote Administration Protocol Specification | Specifies the Microsoft Remote Administration Protocol (RAP), which Microsoft LAN Manager uses to perform remote administrative functions and is included in the Microsoft Windows operating system for compatibility reasons. |
| [MS-RDC]: Remote Differential Compression Algorithm Specification | Specifies the Remote Differential Compression Algorithm protocol, which enables efficient synchronization of files with a remote source by using compression techniques to minimize the amount of data sent between a client and server. |
| [MS-RSMP]: Removable Storage Manager (RSM) Remote Protocol Specification | Specifies the Removable Storage Manager (RSM) Remote Protocol, a set of distributed component object model (DCOM) interfaces for applications to manage robotic changers, media libraries, and tape drives. This protocol deals with detailed low-level operating system and storage concepts. |
| [MS-RSVD]: Remote Shared Virtual Disk Protocol | Specifies the Remote Shared Virtual Disk Protocol, which supports accessing and manipulating virtual disks stored as files on an SMB3 file server. This protocol enables opening, querying, administering, reserving, reading, and writing the virtual disk objects, providing for flexible access by single or multiple consumers. It also provides for forwarding of SCSI operations, to be processed by the virtual disk. |
| [MS-SCMP]: Shadow Copy Management Protocol Specification | Specifies the Shadow Copy Management Protocol, which programmatically enumerates shadow copies and configures shadow copy storage on remote machines. |
| [MS-SHLLINK]: Shell Link (.LNK) Binary File Format | Specifies the Shell Link Binary File Format, which contains information that can be used to access another data object. The Shell Link Binary File Format is the format of Windows files with the extension "LNK". |
| [MS-SMB]: Server Message Block (SMB) Protocol Specification | Specifies the Server Message Block (SMB) Protocol, which defines extensions to the existing Common Internet File System (CIFS) specification that have been implemented by Microsoft since the publication of the [CIFS] specification. |
| [MS-SMB2]: Server Message Block (SMB) Version 2.0 and 3.0 Protocol Specification | Specifies the Server Message Block (SMB) Version 2.0 and 3.0 Protocol, which supports the sharing of file and print resources between machines and extends the concepts from the Server Message Block Protocol. |
| [MS-SMBD]: SMB2 Remote Direct Memory Access (RDMA) Transport Protocol Specification | Specifies the SMB2 Remote Direct Memory Access (RDMA) Transport Protocol, a wrapper for the existing SMB2 protocol that allows SMB2 packets to be delivered over RDMA-capable transports such as iWARP or Infiniband while utilizing the direct data placement (DDP) capabilities of these transports. Benefits include reduced CPU overhead, lower latency, and improved throughput. |
| [MS-SQOS]: Storage Quality of Service Protocol | Specifies the Storage Quality of Service (QoS) Protocol, which is a block-based protocol that is used to manage the Quality of Service configuration of I/O flows targeting remote files accessed over SMB3. |
| [MS-SRVS]: Server Service Remote Protocol Specification | Specifies the Server Service Remote Protocol, which remotely enables file and printer sharing and named pipe access to the server through the Server Message Block Protocol. |
| [MS-SWN]: Service Witness Protocol Specification | Specifies the Service Witness Protocol, which enables an SMB2 clustered file server to notify SMB2 clients with prompt and explicit notifications about the failure or recovery of a network name and associated services. |
| [MS-VDS]: Virtual Disk Service (VDS) Protocol Specification | Specifies the Virtual Disk Service (VDS) Protocol, a set of distributed component object model (DCOM) interfaces for managing the configuration of disk storage. |
| [MS-WDV]: Web Distributed Authoring and Versioning (WebDAV) Protocol: Client Extensions | Specifies the Web Distributed Authoring and Versioning (WebDAV) Protocol: Client Extensions, which extends WebDAV by introducing new headers that both enable the file types that are not currently manageable and optimize protocol interactions for file system clients. These extensions do not introduce new functionality into WebDAV, but instead optimize processing and eliminate the need for special-case processing. |
| [MS-WDVME]: Web Distributed Authoring and Versioning (WebDAV) Protocol: Microsoft Extensions | Specifies the Web Distributed Authoring and Versioning (WebDAV) Protocol: Microsoft Extensions, which extends the WebDAV Protocol specified in [RFC2518] to extend the standard Hypertext Transfer Protocol (HTTP) mechanisms specified in [RFC2616] for providing file access and content management over the Internet. |
| [MS-WDVSE]: Web Distributed Authoring and Versioning (WebDAV) Protocol: Server Extensions | Specifies the Web Distributed Authoring and Versioning (WebDAV) Protocol: Server Extension, which extends the standard HTTP mechanisms defined in [RFC2068] to provide file access and content management over the Internet. |
| [MS-WSMV]: Web Services Management Protocol Extensions for Windows Vista | Specifies the Web Services Management Protocol Extensions for Windows Vista, which provides Windows Vista extensions to the WS-Management Protocol, the WS-Management Binding Specification, and the WS-CIM Mapping Specification for accessing CIM objects as a Web service. |
| [MS-WSP]: Windows Search Protocol Specification | Specifies the Windows Search Protocol (WSP), which enables a client to communicate with a server hosting a Windows Search service (WSS) to issue queries. |
| [MS-WSSFO]: Windows SharePoint Services (WSS): File Operations Database Communications Protocol Specification | Specifies the Windows SharePoint Services (WSS): File Operations Database Communications Protocol. This protocol defines communication sequences used by Web Front End (WFE) and application servers to perform data query and update commands on Back End Database Servers (BEDS) as part of file, user, and group administration operations. |
| [MS-WSSFO2]: Windows SharePoint Services (WSS): File Operations Database Communications Version 2 Protocol Specification | Specifies the Windows SharePoint Services (WSS): File Operations Database Communications Version 2 Protocol. This protocol allows the communication sequences used by front-end Web servers to perform data query and update commands on back-end database servers as part of file, user, and group administration operations. |
| [MS-WSSFO3]: Windows SharePoint Services (WSS): File Operations Database Communications Version 3 Protocol Specification | Specifies the Windows SharePoint Services (WSS): File Operations Database Communications Protocol. This protocol provides communication sequences used by front-end web servers to perform data query and update commands on back-end database servers as part of file, user, and group administration operations. |
| [MS-WSSFOB]: Windows SharePoint Services (WSS): File Operations Database Communications Base Protocol Specification | Specifies the Windows SharePoint Services (WSS): File Operations Database Communications Base Protocol. This protocol allows the communication sequences used by front-end Web servers to perform data query and update commands on back-end database servers as part of file, user, and group administration operations. |
USER AND GROUP ADMINISTRATION TASK PROTOCOLS
Base Authorization and Authentication Protocols Scenario
Protocols used to provide standard authentication and authorization services for Windows clients and servers.
| Specification | Description |
|---|---|
| [MS-ADFSOAL]: Active Directory Federation Services OAuth Authorization Code Lookup Protocol | Specifies the Active Directory Federation Services OAuth Authcode Lookup Protocol, which is used to find the issuing server of an access token for an OAuth authorization code. |
| [MS-ADFSPIP]: Active Directory Federation Services and Proxy Integration Protocol | Specifies the Active Directory Federation Services Proxy and Web Application Proxy Integration Protocol. This protocol integrates Active Directory Federation Services with an authentication and application proxy to enable access to services located inside the boundaries of the corporate network for clients that are located outside that boundary. |
| [MS-ADFSPP]: Active Directory Federation Service (AD FS) Proxy Protocol | Specifies the Federation Service Proxy Protocol, which is used by a security token service (STS) proxy to obtain configuration data about an STS in order to assist users in selecting an acceptable security realm from which to obtain a security token. |
| [MS-ADFSWAP]: Active Directory Federation Service (AD FS) Web Agent Protocol | Specifies the Federation Service Web Agent Protocol, which is used by a Web service (WS) resource to obtain configuration data about a security token service (STS) in order to validate tokens from that STS using the protocol defined in [MS-MWBF]. |
| [MS-APDS]: Authentication Protocol Domain Support Specification | Specifies Authentication Protocol Domain Support, which is the communication process between a server and a domain controller that uses Netlogon interfaces to complete an authentication sequence. |
| [MS-BKRP]: BackupKey Remote Protocol Specification | Specifies how to encrypt secret values (such as cryptographic keys), so they can be backed up to storage that is not specially protected, and how to decrypt such values in the event recovery is necessary. |
| [MS-CHAP]: Extensible Authentication Protocol Method for Microsoft Challenge Handshake Authentication Protocol (CHAP) Specification | Specifies the Extensible Authentication Protocol Method for Microsoft Challenge Handshake Authentication Protocol (CHAP). This protocol enables extensible authentication for network access. |
| [MS-DPSP]: Digest Protocol Extensions | Specifies the Digest Protocol Extensions, which describes the variations in the Windows implementation of the Digest Authentication protocol from the standard, as specified in [RFC2617]. |
| [MS-DVRE]: Device Registration Enrollment Protocol | Specifies the Device Registration Enrollment Protocol, which is used to register corporate-owned and personal devices with a corporate network. |
| [MS-DVRJ]: Device Registration Join Protocol | Specifies the Device Registration Join Protocol, which provides a lightweight mechanism for registering personal or corporate-owned devices with a workplace. |
| [MS-GSSA]: Generic Security Service Algorithm for Secret Key Transaction Authentication for DNS (GSS-TSIG) Protocol Extension | Specifies the Generic Security Service Algorithm for Secret Key Transaction Authentication for DNS (GSS-TSIG) Protocol Extension, which identifies one possible extension to TSIG based on the Generic Security Service Application Program Interface (GSS-API). |
| [MS-HGRP]: HomeGroup Protocol Specification | Specifies the HomeGroup Protocol, which is used to create a trust relationship that facilitates the advertising and publishing of content between machines via a peer-to-peer (P2P) infrastructure. |
| [MS-KILE]: Kerberos Protocol Extensions | Specifies the Microsoft implementation of the Kerberos Protocol Extensions, as specified in [RFC4120], by specifying any Windows behaviors that differ from the Kerberos Protocol, in addition to Windows extensions for interactive logon and the inclusion of authorization information expressed as group memberships and related information. |
| [MS-KPP]: Key Provisioning Protocol | Specifies the Key Provisioning Protocol, which provides a mechanism for registering a set of cryptographic keys on a user and device pair. |
| [MS-LSAD]: Local Security Authority (Domain Policy) Remote Protocol Specification | Specifies the Local Security Authority (Domain Policy) Remote Protocol. It provides an RPC interface used for providing remote management for policy settings related to account objects, secret objects, trusted domain objects (TDOs), and other security-related policy settings. |
| [MS-LSAT]: Local Security Authority (Translation Methods) Remote Protocol Specification | Specifies the Local Security Authority (Translation Methods) Remote Protocol, which is implemented in Windows-based products to translate identifiers for security principal between human-readable and machine-readable forms. |
| [MS-MWBE]: Microsoft Web Browser Federated Sign-On Protocol Extensions | Specifies the Microsoft Web Browser Federated Sign-On Protocol Extensions. This extension enables Web browser requestors that do not support scripting (to create POST messages) and enables passing security identifiers (SIDs) in Security Assertion Markup Language (SAML) V1.1 assertions. It is assumed that the reader is familiar with the terms, concepts, and protocols that are defined in [MS-MWBF]. |
| [MS-MWBF]: Microsoft Web Browser Federated Sign-On Protocol Specification | Specifies the Microsoft Web Browser Federated Sign-On Protocol, which is primarily a restriction of the protocol that is specified in [WSFedPRP]. The restrictions are designed to enable greater interoperability by reducing the number of variations that must be implemented. This protocol also specifies minor additions to [WSFedPRP] to handle common scenarios. |
| [MS-N2HT]: Negotiate and Nego2 HTTP Authentication Protocol Specification | Specifies the Negotiate and Nego2 HTTP Authentication Protocol, which describes support for SPNEGO authentication as specified in [RFC4559]. The tokens are transmitted using base64-encoding. This protocol calls out the differences in the Microsoft implementation from what is specified in [RFC4559], where applicable. |
| [MS-NBTE]: NetBIOS over TCP (NBT) Extensions | Specifies the NetBIOS over TCP (NetBT) Extensions, as specified in [RFC1001] and [RFC1002]. These extensions modify the syntax of allowable NetBIOS names and the behavior of timers, and add support for multihomed hosts. |
| [MS-NLMP]: NT LAN Manager (NTLM) Authentication Protocol Specification | Specifies the NT LAN Manager (NTLM) Authentication Protocol, used in Windows for authentication between clients and servers. NTLM is used by application protocols to authenticate remote users and, optionally, to provide session security when requested by the application. |
| [MS-NRPC]: Netlogon Remote Protocol Specification | Specifies the Netlogon Remote Protocol, a Microsoft-defined RPC interface that is used for user and machine authentication on domain-based networks; to replicate the user account database for operating systems earlier than Windows 2000 backup domain controllers; to maintain domain relationships from the members of a domain to the domain controller, among domain controllers for a domain, and between domain controllers across domains; and to discover and manage these relationships. |
| [MS-NTHT]: NTLM Over HTTP Protocol Specification | Specifies the NTLM Over HTTP Protocol, which is used to authenticate a Web client to a Web server. This protocol authentication variant works only with NTLM; the Kerberos protocol is not supported. |
| [MS-PASS]: Passport Server Side Include (SSI) Version 1.4 Protocol Specification | Specifies the Passport Server Side Include (SSI) Version 1.4 Protocol, which describes how messages are encapsulated on the wire. |
| [MS-PBSD]: Publication Services Data Structure | Specifies the Publication Services Data Structure. This structure describes the data that computers use to describe themselves and the resources they offer as Web services over IP-based networks. |
| [MS-PKAP]: Public Key Authentication Protocol | Specifies the Public Key Authentication Protocol, which provides a method for HTTP clients to prove possession of a private key to a web server without having to rely on client Transport Layer Security (TLS) support from the underlying platform. |
| [MS-PKCA]: Public Key Cryptography for Initial Authentication (PKINIT) in Kerberos Protocol Specification | Specifies the Public Key Cryptography for Initial Authentication (PKINIT) in Kerberos Protocol, which enables the use of public key cryptography in the initial authentication exchange of the Kerberos Protocol and specifies the Windows implementation of PKINIT where it differs from [RFC4556]. |
| [MS-POP3]: NT LAN Manager (NTLM) Authentication: Post Office Protocol - Version 3 (POP3) Extension | Specifies the Post Office Protocol - Version 3 (POP3) Extension by describing the use of NTLM Authentication (see [MS-NLMP]) by the Post Office Protocol 3 (POP3) to facilitate client authentication to a Windows POP3 server. POP3 specifies a protocol for the inquiry and retrieval of electronic mail. |
| [MS-PPSEC]: Peer-to-Peer Grouping Security Protocol Specification | Specifies the Peer-to-Peer Grouping Security Protocol (P2P Grouping), which layers on top of the Peer-to-Peer Graphing Protocol [MS-PPGRH] and adds security and discovery services. |
| [MS-SAMR]: Security Account Manager (SAM) Remote Protocol Specification (Client-to-Server) | Specifies the Security Account Manager (SAM) Remote Protocol Specification (Client-to-Server), which supports printing and spooling operations that are synchronous between client and server. |
| [MS-SAMS]: Security Account Manager (SAM) Remote Protocol Specification (Server-to-Server) | Specifies the Security Account Manager (SAM) Remote Protocol Specification (Server-to-Server). Domain controllers (DCs) use this protocol to forward time-critical database changes to the primary domain controller (PDC), and to forward time-critical database changes from a read-only domain controller (RODC) to a writable NC replica within the same domain outside the normal replication protocol. |
| [MS-SFU]: Kerberos Protocol Extensions: Service for User and Constrained Delegation Protocol Specification | Specifies the Kerberos Protocol Extensions: Service for User and Constrained Delegation Protocol, which are two extensions to the Kerberos protocol as developed by Microsoft. These two extensions, collectively known as Service for User (S4U), enable an application service to obtain a Kerberos service ticket on behalf of a user. |
| [MS-SPNG]: Simple and Protected Generic Security Service Application Program Interface Negotiation Mechanism (SPNEGO) Protocol Extensions | Specifies the Simple and Protected Generic Security Service Application Program Interface Negotiation Mechanism (SPNEGO) Protocol Extensions. SPNEGO is a security protocol that uses a GSS-API authentication mechanism. GSS-API is a literal set of functions that include both an API and a methodology for approaching authentication. |
| [MS-TLSP]: Transport Layer Security (TLS) Profile | Specifies the Transport Layer Security (TLS) Profile, which is the authentication option to the Telnet protocol as a generic method for negotiating an authentication type and mode, including determining whether encryption should be used and whether credentials should be forwarded. |
Domain Services Interaction Server Protocols Scenario
Protocols used to enable member servers of Windows domains to securely provide pass-through authentication to Windows clients and servers seeking to access a service or application (such as a file server).
| Specification | Description |
|---|---|
| [MS-ADA1]: Active Directory Schema Attributes A-L | Specifies the Active Directory Schema Attributes A-L, which contains a partial list of the objects that exist in the Active Directory schema (attributes beginning with the letters A through L). |
| [MS-ADA2]: Active Directory Schema Attributes M | Specifies the Active Directory Schema Attributes M, which contains a partial list of the objects that exist in the Active Directory schema (attributes beginning with the letter M). |
| [MS-ADA3]: Active Directory Schema Attributes N-Z | Specifies the Active Directory Schema Attributes N-Z, which contains a partial list of the objects that exist in the Active Directory schema (attributes beginning with the letters N through Z). |
| [MS-ADCAP]: Active Directory Web Services: Custom Action Protocol Specification | Specifies the Active Directory Web Services: Custom Action Protocol, used for directory access in identity management and topology management. This protocol enables the transition of client applications that are currently using non–Web services protocols for managing information held in directory services to instead use Web services protocols. |
| [MS-ADDM]: Active Directory Web Services: Data Model and Common Elements | Specifies the Active Directory Web Services: Data Model and Common Elements. This protocol contains an XML data model and other protocol components (such as the definition of an XPath 1.0–derived selection language) that are used in various protocols that belong to the set of Active Directory Web Services protocols. |
| [MS-ADFSPP]: Active Directory Federation Service (AD FS) Proxy Protocol | Specifies the Federation Service Proxy Protocol, which is used by a security token service (STS) proxy to obtain configuration data about an STS in order to assist users in selecting an acceptable security realm from which to obtain a security token. |
| [MS-ADFSWAP]: Active Directory Federation Service (AD FS) Web Agent Protocol | Specifies the Federation Service Web Agent Protocol, which is used by a Web service (WS) resource to obtain configuration data about a security token service (STS) in order to validate tokens from that STS using the protocol defined in [MS-MWBF]. |
| [MS-ADLS]: Active Directory Lightweight Directory Services Schema | Specifies the Active Directory Lightweight Directory Services Schema, which contains a list of the objects that exist in the Active Directory Lightweight Directory Services schema. |
| [MS-ADSC]: Active Directory Schema Classes | Specifies the Active Directory Schema Classes, which contains a partial list of objects that exist in the Active Directory schema. |
| [MS-ADTS]: Active Directory Technical Specification | Specifies the Active Directory Technical protocol. This protocol describes the state model for Active Directory. |
| [MS-APDS]: Authentication Protocol Domain Support Specification | Specifies Authentication Protocol Domain Support, which is the communication process between a server and a domain controller that uses Netlogon interfaces to complete an authentication sequence. |
| [MS-BKRP]: BackupKey Remote Protocol Specification | Specifies how to encrypt secret values (such as cryptographic keys), so they can be backed up to storage that is not specially protected, and how to decrypt such values in the event recovery is necessary. |
| [MS-DSML]: Directory Services Markup Language (DSML) 2.0 Protocol Extensions | Specifies the Directory Services Markup Language (DSML) 2.0 Protocol Extensions. The SOAP session extensions (SSE) make it possible to maintain state information across multiple request/response operations. |
| [MS-KILE]: Kerberos Protocol Extensions | Specifies the Microsoft implementation of the Kerberos Protocol Extensions, as specified in [RFC4120], by specifying any Windows behaviors that differ from the Kerberos Protocol, in addition to Windows extensions for interactive logon and the inclusion of authorization information expressed as group memberships and related information. |
| [MS-LSAD]: Local Security Authority (Domain Policy) Remote Protocol Specification | Specifies the Local Security Authority (Domain Policy) Remote Protocol. It provides an RPC interface used for providing remote management for policy settings related to account objects, secret objects, trusted domain objects (TDOs), and other security-related policy settings. |
| [MS-LSAT]: Local Security Authority (Translation Methods) Remote Protocol Specification | Specifies the Local Security Authority (Translation Methods) Remote Protocol, which is implemented in Windows-based products to translate identifiers for security principal between human-readable and machine-readable forms. |
| [MS-NNS]: .NET NegotiateStream Protocol Specification | Specifies the .NET NegotiateStream Protocol, which provides mutually authenticated and confidential communication over a TCP connection. It uses the Simple and Protected GSS-API Negotiation mechanism (SPNEGO) for security services (authentication, key derivation, and data encryption and decryption). |
| [MS-NRPC]: Netlogon Remote Protocol Specification | Specifies the Netlogon Remote Protocol, a Microsoft-defined RPC interface that is used for user and machine authentication on domain-based networks; to replicate the user account database for operating systems earlier than Windows 2000 backup domain controllers; to maintain domain relationships from the members of a domain to the domain controller, among domain controllers for a domain, and between domain controllers across domains; and to discover and manage these relationships. |
| [MS-PAC]: Privilege Attribute Certificate Data Structure | Specifies the Privilege Attribute Certificate Data Structure, which is used to encode authorization information. The Privilege Attribute Certificate also contains memberships, additional credential information, profile and policy information, and supporting security metadata. |
| [MS-PKCA]: Public Key Cryptography for Initial Authentication (PKINIT) in Kerberos Protocol Specification | Specifies the Public Key Cryptography for Initial Authentication (PKINIT) in Kerberos Protocol, which enables the use of public key cryptography in the initial authentication exchange of the Kerberos Protocol and specifies the Windows implementation of PKINIT where it differs from [RFC4556]. |
| [MS-RCMP]: Remote Certificate Mapping Protocol Specification | Specifies the Remote Certificate Mapping Protocol, which enables servers to use a directory, database, or other technology to map the user's X.509 certificate to a security principal. |
| [MS-SAMR]: Security Account Manager (SAM) Remote Protocol Specification (Client-to-Server) | Specifies the Security Account Manager (SAM) Remote Protocol Specification (Client-to-Server), which supports printing and spooling operations that are synchronous between client and server. |
| [MS-SAMS]: Security Account Manager (SAM) Remote Protocol Specification (Server-to-Server) | Specifies the Security Account Manager (SAM) Remote Protocol Specification (Server-to-Server). Domain controllers (DCs) use this protocol to forward time-critical database changes to the primary domain controller (PDC), and to forward time-critical database changes from a read-only domain controller (RODC) to a writable NC replica within the same domain outside the normal replication protocol. |
| [MS-WCCE]: Windows Client Certificate Enrollment Protocol Specification | Specifies a Microsoft protocol that consists of a set of DCOM interfaces that allow clients to request various services from a certification authority (CA). These services enable X.509 (as specified in [X509]) digital certificate enrollment, issuance, revocation, and property retrieval. |
| [MS-WCFESAN]: WCF-Based Encrypted Server Administration and Notification Protocol Specification | Specifies the WCF-Based Encrypted Server Administration and Notification Protocol, which enables the protocol client to monitor and manage the protocol server in the same network. |
| [MS-WKST]: Workstation Service Remote Protocol Specification | Specifies the WS-Enumeration Directory Services Protocol Extensions, a set of extensions to the Web Services Enumeration (WS-Enumeration) [WSENUM] protocol for facilitating SOAP-based search operations against directory servers. |
| [MS-WSDS]: WS-Enumeration: Directory Services Protocol Extensions | Specifies the WS-Enumeration Directory Services Protocol Extensions, a set of extensions to the Web Services Enumeration (WS-Enumeration) [WSENUM] protocol for facilitating SOAP-based search operations against directory servers. |
| [MS-WSPELD]: WS-Transfer and WS-Enumeration Protocol Extension for Lightweight Directory Access Protocol v3 Controls Specification | Specifies the WS-Transfer: Lightweight Directory Access Protocol (LDAP) v3 Controls, also known as WSPELD. This protocol extends the Web Services Enumeration (WS-Enumeration) [WSENUM] and Web Services Transfer (WS-Transfer) [WXFR] protocols. |
| [MS-WSTIM]: WS-Transfer: Identity Management Operations for Directory Access Extensions | Specifies the WS-Transfer: Identity Management Operations for Directory Access Extensions, a set of extensions to the WS-Transfer protocol [WXFR] for representing the protocol operations commonly used for directory access in identity management protocols. |
Multi-Factor Authentication and Certificate Server Protocols Scenario
Protocols used to enable strong authentication methods and simplified public key infrastructure deployment to Windows clients and servers.
| Specification | Description |
|---|---|
| [MS-CRTD]: Certificate Templates Structure | Specifies the Certificate Templates Structure. This structure describes the syntax and interpretation of certificate templates, which forms the basis of certificate management for the Certificate Templates Protocol. |
| [MS-CSRA]: Certificate Services Remote Administration Protocol Specification | Specifies the Certificate Services Remote Administration Protocol, which consists of a set of Distributed Component Object Model (DCOM) interfaces that enable administrative tools to configure the state and policy of a certification authority (CA) on a server. |
| [MS-CSSP]: Credential Security Support Provider (CredSSP) Protocol Specification | Specifies the Credential Security Support Provider (CredSSP) Protocol, which enables an application to securely delegate a user's credentials from a client to a target server. |
| [MS-OCSP]: Online Certificate Status Protocol (OCSP) Extensions | Specifies the Online Certificate Status Protocol (OCSP) Extensions, which define the data that needs to be exchanged between an application that checks the status of a certificate and the responder that provides the status. |
| [MS-RCMP]: Remote Certificate Mapping Protocol Specification | Specifies the Remote Certificate Mapping Protocol, which enables servers to use a directory, database, or other technology to map the user's X.509 certificate to a security principal. |
| [MS-WCCE]: Windows Client Certificate Enrollment Protocol Specification | Specifies a Microsoft protocol that consists of a set of DCOM interfaces that allow clients to request various services from a certification authority (CA). These services enable X.509 (as specified in [X509]) digital certificate enrollment, issuance, revocation, and property retrieval. |
| [MS-WSTEP]: WS-Trust X.509v3 Token Enrollment Extensions | Specifies the WS-Trust Enrollment Extensions, also known as WSTEP. The protocol specification defines the message formats and server behavior for the purposes of certificate enrollment. |
| [MS-XCEP]: X.509 Certificate Enrollment Policy Protocol Specification | Specifies the X.509 Certificate Enrollment Policy Protocol. This protocol defines the interactions between a requesting client and a responding server for the exchange of a certificate enrollment policy, which is the collection of certificate templates and certificate issuers available to the requestor for X.509 certificate enrollment. |
Group Policy Server Protocols Scenario
Protocols used to enable machine and user policy and configuration management to Windows clients and servers.
| Specification | Description |
|---|---|
| [MS-GPAC]: Group Policy: Audit Configuration Extension | Specifies the Group Policy: Audit Configuration Extension, which provides a mechanism for an administrator to control audit policies on clients. |
| [MS-GPCAP]: Group Policy: Central Access Policies Protocol Extension | Specifies the Group Policy: Central Access Policies Extension, which provides the means of configuring central access policies that are applied to Group Policy client computer resources for authorization purposes. |
| [MS-GPDPC]: Group Policy: Deployed Printer Connections Extension | Specifies the Group Policy: Deployed Printer Connections Extension, which supports the use of preconfigured collections of shared printer connections. |
| [MS-GPEF]: Group Policy: Encrypting File System Extension | Specifies the Group Policy: Encrypting File System Extension, which uses the Microsoft Group Policy Protocol to enable remote administrative configuration of the Encrypting File System. |
| [MS-GPFR]: Group Policy: Folder Redirection Protocol Extension | Specifies the Group Policy: Folder Redirection Protocol Extension, which provides a mechanism to relocate specific user folders to server disk volumes. The protocol extension describes how file system access requests to a user's folders are automatically redirected to a newly created folder for each user. |
| [MS-GPIE]: Group Policy: Internet Explorer Maintenance Extension | Specifies the Group Policy: Internet Explorer Maintenance Extension, which enables administrators to apply custom settings to the Internet Explorer configuration on one or more computers to enforce Internet-related security standards and provide a common browser interface within the organization. |
| [MS-GPIPSEC]: Group Policy: IP Security (IPsec) Protocol Extension | Specifies the IP Security (IPSec) Protocol Extension to the Group Policy: Core Protocol. This extension enables administrators to arbitrarily instruct large groups of client machines to configure their local IPsec/IKE components to provide basic IP traffic filtering, IP data integrity, and (optionally) IP data encryption. |
| [MS-GPOL]: Group Policy: Core Protocol Specification | Specifies the Group Policy: Core Protocol, which enables clients to discover and retrieve policy settings that administrators of a domain create. |
| [MS-GPPREF]: Group Policy: Preferences Extension Data Structure | Specifies the Group Policy: Preferences Extension. This extension to the Group Policy: Core Protocol provides a mechanism to manage and deploy policy preferences. |
| [MS-GPREG]: Group Policy: Registry Extension Encoding | Specifies the Group Policy: Registry Extension Encoding, an extension to the Group Policy: Core Protocol. This mechanism enables an administrator to control any behavior on a client that depends on registry-based settings. |
| [MS-GPSB]: Group Policy: Security Protocol Extension | Specifies the Group Policy: Security Protocol Extension, which is an extension to the Group Policy: Core Protocol. This extension enables security policies to be distributed to multiple client systems, so these systems can enact the policies in accordance with the intentions of the administrator. |
| [MS-GPSCR]: Group Policy: Scripts Extension Encoding | Specifies the Group Policy: Scripts Extension Encoding, an extension to the Group Policy: Core Protocol that provides a mechanism for an administrator to instruct an arbitrarily large group of clients to execute administrator-specified code at computer startup, computer shutdown, user logon, and user logoff. |
| [MS-GPSI]: Group Policy: Software Installation Protocol Extension | Specifies the Group Policy: Software Installation Protocol Extension, which enables an administrator to install and remove software applications on client computers. |
| [MS-GPWL]: Group Policy: Wireless/Wired Protocol Extension | Specifies the Group Policy: Wireless/Wired Protocol Extension, an extension to the Group Policy: Core Protocol that specifies the behaviors of the Wireless/Wired Group Policy administrative-side and client-side plug-in extensions. |
Systems and Systems Health Management Server Protocols Scenario
Protocols used to enable centralized systems management and configuration for Windows clients and servers.
| Specification | Description |
|---|---|
| [MC-BUP]: Background Intelligent Transfer Service (BITS) Upload Protocol Specification | Specifies the Background Intelligent Transfer Service (BITS) Upload Protocol, which is used to upload large entities from a client to a server over networks with frequent disconnections, and to send notifications from the server to a server application about the availability of the uploaded entities. |
| [MS-BPAU]: Background Intelligent Transfer Service (BITS) Peer-Caching: Peer Authentication Protocol Specification | Specifies the Background Intelligent Transfer Service (BITS) Peer-Caching: Peer Authentication Protocol. This protocol provides authentication for computers in an Active Directory domain in support of the BITS Peer-Caching Content Retrieval Protocol ([MS-BPCR]). |
| [MS-BPCR]: Background Intelligent Transfer Service (BITS) Peer-Caching: Content Retrieval Protocol Specification | Specifies the Background Intelligent Transfer Service (BITS) Peer-Caching: Content Retrieval Protocol, which is one of the family of protocols that implements a distributed URL cache known as "BITS peer-caching". Other protocols in the family are used to discover potential peers and to authenticate them. |
| [MS-BPDP]: Background Intelligent Transfer Service (BITS) Peer-Caching: Peer Discovery Protocol Specification | Specifies the Background Intelligent Transfer Service (BITS) Peer-Caching: Peer Discovery Protocol, which is used to locate hosts in a domain that supports the URL-caching protocol implemented by BITS. |
| [MS-DMRP]: Disk Management Remote Protocol Specification | Specifies the Disk Management Remote Protocol Specification, a set of Distributed Component Object Model (DCOM) interfaces that manages storage objects on a machine. |
| [MS-DPWSSN]: Devices Profile for Web Services (DPWS): Size Negotiation Extension | Specifies the Devices Profile for Web Services (DPWS): Size Negotiation Extension. This is an extension to the Devices Profile for Web Services (DPWS) and enables the negotiation of message sizes between a client and a service for a specific message transaction. |
| [MS-DSSP]: Directory Services Setup Remote Protocol Specification | Specifies the Directory Services Setup Remote Protocol, which exposes an RPC interface that a client can call to obtain domain-related computer state and configuration information. |
| [MS-HGRP]: HomeGroup Protocol Specification | Specifies the HomeGroup Protocol, which is used to create a trust relationship that facilitates the advertising and publishing of content between machines via a peer-to-peer (P2P) infrastructure. |
| [MS-LWSSP]: Lightweight Web Services Security Profile | Specifies the Lightweight Web Services Security Profile. The profile specifies how to perform lightweight client authentication and security token exchange based on set of security-related Web services protocols. |
| [MS-PBSD]: Publication Services Data Structure | Specifies the Publication Services Data Structure. This structure describes the data that computers use to describe themselves and the resources they offer as Web services over IP-based networks. |
| [MS-RAIW]: Remote Administrative Interface: WINS Specification | Specifies the Remote Administrative Interface: WINS protocol, which enables local or remote administration of the Windows Internet Name Service (WINS) within the Microsoft Management Console (MMC) WINS snap-in and the NetSh command line (WINS context). |
| [MS-RSMC]: Remote Session Monitoring and Control Protocol | Specifies and provides support for client machines to monitor and manage Remote Desktop Protocol (RDP) sessions on a server machine. The protocol provides a set of web service APIs that are implemented as a SOAP-based protocol that uses Hypertext Transfer Protocol (HTTP) and Hypertext Transfer Protocol over Secure Sockets Layer (HTTPS) as its transport. |
| [MS-RSMP]: Removable Storage Manager (RSM) Remote Protocol Specification | Specifies the Removable Storage Manager (RSM) Remote Protocol, a set of distributed component object model (DCOM) interfaces for applications to manage robotic changers, media libraries, and tape drives. This protocol deals with detailed low-level operating system and storage concepts. |
| [MS-RSP]: Remote Shutdown Protocol Specification | Specifies the Remote Shutdown Protocol, which is designed for shutting down, or for terminating the shutdown, of a remote computer during the shutdown waiting period. |
| [MS-SAMLPR]: Security Assertion Markup Language (SAML) Proxy Request Signing Protocol Specification | Specifies the Security Assertion Markup Language (SAML) Proxy Request Signing Protocol, which allows proxy servers to perform operations that require knowledge of configured keys and other state information about federated sites known by the Security Token service server. |
| [MS-SCMR]: Service Control Manager Remote Protocol Specification | Specifies the Service Control Manager Remote Protocol, which is used for remotely managing the Service Control Manager (SCM), an RPC server that enables service configuration and control of service programs. |
| [MS-SRVS]: Server Service Remote Protocol Specification | Specifies the Server Service Remote Protocol, which remotely enables file and printer sharing and named pipe access to the server through the Server Message Block Protocol. |
| [MS-TSCH]: Task Scheduler Service Remoting Protocol Specification | Specifies the Task Scheduler Service Remoting Protocol, which is used to register and configure a task and to inquire about the status of tasks that are running on a remote machine. |
| [MS-WMI]: Windows Management Instrumentation Remote Protocol Specification | Specifies the Windows Management Instrumentation Remote Protocol, which uses the Common Information Model (CIM), as specified in [DMTF-DSP0004], to represent various components of the operating system. CIM is the conceptual model for storing enterprise management information. |
| [MS-WMIO]: Windows Management Instrumentation Encoding Version 1.0 Protocol Specification | Specifies the Windows Management Instrumentation Encoding Version 1.0 Protocol, which is a binary data encoding format used by the Windows Management Instrumentation Remote Protocol, as specified in [MS-WMI], for network communication. |
| [MS-WSMAN]: Web Services Management Protocol Extensions for Windows Server 2003 | Specifies the Web Services Management Protocol Extensions, which is a general purpose, SOAP-based systems management extension that defines procedures for carrying out remote management operations. |
| [MS-WSMV]: Web Services Management Protocol Extensions for Windows Vista | Specifies the Web Services Management Protocol Extensions for Windows Vista, which provides Windows Vista extensions to the WS-Management Protocol, the WS-Management Binding Specification, and the WS-CIM Mapping Specification for accessing CIM objects as a Web service. |
| [MS-XOPP]: XML-binary Optimized Packaging (XOP) Profile | Specifies the XML-binary Optimized Packaging (XOP) Profile, which provides extensions that enable more efficient implementations of [XML-XOP] to be built by requiring certain ordering of the MIME parts in the XOP package. |
Directory and Global Catalog Replication Server Protocols Scenario
Protocols used between instances of Windows Active Directory domain controller servers to enable providing a single distributed directory and authentication service.
| Specification | Description |
|---|---|
| [MS-ADTS]: Active Directory Technical Specification | Specifies the Active Directory Technical protocol. This protocol describes the state model for Active Directory. |
| [MS-DRSR]: Directory Replication Service (DRS) Remote Protocol Specification | Specifies the Directory Replication Service (DRS) Remote Protocol, an RPC protocol for replication and management of data in Active Directory. |
| [MS-DSML]: Directory Services Markup Language (DSML) 2.0 Protocol Extensions | Specifies the Directory Services Markup Language (DSML) 2.0 Protocol Extensions. The SOAP session extensions (SSE) make it possible to maintain state information across multiple request/response operations. |
| [MS-SRPL]: Directory Replication Service (DRS) Protocol Extensions for SMTP | Specifies the Directory Replication Service (DRS) Protocol Extensions for SMTP. These are extensions to the DRS Protocol for transport over the Simple Mail Transfer Protocol (SMTP), which provide an alternate transport for the DRS protocol that may allow domain controllers to perform replication in environments where the RPC transport mechanism is unsuitable. |
Kerberos Group Membership Protocols Scenario
Describes the structure of AD group membership authorization data carried in the field of a Kerberos ticket for use by servers in performing access control.
| Specification | Description |
|---|---|
| [MS-CTA]: Claims Transformation Algorithm | Specifies the Claims Transformation Algorithm (CTA), which consists of two components: a grammar describing a transformation rules language and an algorithm for transforming input claims into output claims. A claim is an assertion about a user identity in the form of a name-value tuple. Sets of claims are transformed from sending authority formats to receiving authority formats at authentication trust traversal boundaries. |
| [MS-GPCAP]: Group Policy: Central Access Policies Protocol Extension | Specifies the Group Policy: Central Access Policies Extension, which provides the means of configuring central access policies that are applied to Group Policy client computer resources for authorization purposes. |
| [MS-KILE]: Kerberos Protocol Extensions | Specifies the Microsoft implementation of the Kerberos Protocol Extensions, as specified in [RFC4120], by specifying any Windows behaviors that differ from the Kerberos Protocol, in addition to Windows extensions for interactive logon and the inclusion of authorization information expressed as group memberships and related information. |
| [MS-PAC]: Privilege Attribute Certificate Data Structure | Specifies the Privilege Attribute Certificate Data Structure, which is used to encode authorization information. The Privilege Attribute Certificate also contains memberships, additional credential information, profile and policy information, and supporting security metadata. |
| [MS-RAA]: Remote Authorization API Protocol | Specifies the Remote Authorization API Protocol, which is used to perform “what-if” authorization queries on remote computers. It allows applications to simulate an access control decision that would be made when a principal attempts to access a remote resource protected with an authorization policy. |
| [MS-SFU]: Kerberos Protocol Extensions: Service for User and Constrained Delegation Protocol Specification | Specifies the Kerberos Protocol Extensions: Service for User and Constrained Delegation Protocol, which are two extensions to the Kerberos protocol as developed by Microsoft. These two extensions, collectively known as Service for User (S4U), enable an application service to obtain a Kerberos service ticket on behalf of a user. |
Windows Remote Registry Services Scenario
Protocol for monitoring and modifying registry information and remote system shutdown.
| Specification | Description |
|---|---|
| [MS-RRP]: Windows Remote Registry Protocol Specification | Specifies the Windows Remote Registry Protocol, a remote procedure call (RPC)-based client/server protocol that is used to remotely manage a hierarchical data store such as the Windows registry. |
Windows Event Logging Scenario
Protocol for tracking of events that occur as part of a distributed application.
| Specification | Description |
|---|---|
| [MS-EVEN]: EventLog Remoting Protocol Specification | Specifies the EventLog Remoting Protocol, which exposes the RPC methods for reading events in both live and backup event logs on remote computers. |
| [MS-EVEN6]: EventLog Remoting Protocol Version 6.0 Specification | Specifies the EventLog Remoting Protocol Version 6.0 protocol, which exposes RPC methods for reading events in both live and backup event logs on remote computers. This protocol was originally made available for Windows Vista. |
Network Time Services Scenario
Protocols for managing time synchronization between multiple computers on a network.
| Specification | Description |
|---|---|
| [MS-SNTP]: Network Time Protocol (NTP) Authentication Extensions | Specifies the Network Time Protocol (NTP) Authentication Extensions, which is an authentication extension to the Network Time Protocol (NTP) version 3 ([RFC1305]) and the Simple Network Time Protocol (SNTP) version 4 ([RFC2030]). |
| [MS-W32T]: W32Time Remote Protocol Specification | Specifies the W32Time Remote Protocol, which is used for controlling and monitoring a time service on a machine. This RPC interface supports time services that synchronize time using the Network Time Protocol (NTP) Version 3, as specified in [RFC1305], as well as platform-specific hardware time sources. |
Network Connection Management Scenario
Protocol for transport and configuration of the network redirector to manage network connections with other computers.
| Specification | Description |
|---|---|
| [MS-CBCP]: Callback Control Protocol | Specifies the Callback Control Protocol, which provides a standard method for transporting multi-protocol datagrams over point-to-point links. |
| [MS-WKST]: Workstation Service Remote Protocol Specification | Specifies the WS-Enumeration Directory Services Protocol Extensions, a set of extensions to the Web Services Enumeration (WS-Enumeration) [WSENUM] protocol for facilitating SOAP-based search operations against directory servers. |
Remote Procedure Calls Scenario
Foundation protocols for use of Microsoft Remote Procedure Call (RPC) interfaces between computers on a network.
| Specification | Description |
|---|---|
| [MS-EERR]: ExtendedError Remote Data Structure | Specifies the ExtendedError Remote Data Structure, which encodes extended error information. This data structure assumes that the reader has familiarity with the concepts and the requirements that are detailed in [MS-RPCE] and [C706]. |
| [MS-RPCE]: Remote Procedure Call Protocol Extensions | Specifies the Remote Procedure Call Protocol Extensions, a set of extensions to the DCE Remote Procedure Call 1.1 Specification, as specified in [C706]. These extensions add new capabilities to the DCE 1.1: RPC Specification, allow for more secure implementations to be built, and, in some cases, place additional restrictions on the DCE RPC Specification. |
| [MS-RPCH]: Remote Procedure Call over HTTP Protocol Specification | Specifies the Remote Procedure Call over HTTP Protocol, which describes the use of HTTP or HTTPS as a transport for the Remote Procedure Call (RPC) Protocol, as specified in [C706] and extended in [MS-RPCE]. |
| [MS-RPCL]: Remote Procedure Call Location Services Extensions | Specifies the Remote Procedure Call Location Services Extensions, a set of extensions and restrictions to the DCE Remote Procedure Call Location Services specification as defined in [C706]. |
Network Access Protection Protocols Scenario
Protocols used to protect networks from access by computers that do not meet system health and configuration requirements and to make network quarantine decisions based on the client security health state and a defined network access policy.
| Specification | Description |
|---|---|
| [MS-DHCPN]: Dynamic Host Configuration Protocol (DHCP) Extensions for Network Access Protection (NAP) | Specifies the Dynamic Host Configuration Protocol (DHCP) Extensions for Network Access Protection (NAP), which is designed to reduce the administrative burden and complexity of configuring hosts on a TCP/IP-based network, such as a private intranet, and is one enforcement method supported by Network Access Protection (NAP). |
| [MS-HCEP]: Health Certificate Enrollment Protocol Specification | Specifies the Health Certificate Enrollment Protocol, which enables a network endpoint to obtain digital certificates. |
| [MS-RNAP]: Vendor-Specific RADIUS Attributes for Network Access Protection (NAP) Data Structure | Specifies the Vendor-Specific RADIUS Attributes for Network Access Protection (NAP) Data Structure protocol, which describes the Microsoft RADIUS vendor-specific attributes (VSAs) that are implemented in the Windows operating system. |
| [MS-RNAS]: Vendor-Specific RADIUS Attributes for Network Policy and Access Server (NPAS) Data Structure | Specifies the Vendor-Specific RADIUS Attributes for the Network Policy and Access Server (NPAS) Data Structure protocol, which describes the Microsoft RADIUS vendor-specific attributes (VSAs) that are implemented in the Windows operating system. |
| [MS-WSH]: Windows Security Health Agent (WSHA) and Windows Security Health Validator (WSHV) Protocol Specification | Specifies the Windows Security Health Agent (WSHA) and Windows Security Health Validator (WSHV) Protocol, which reports the system security health state. The protocol details abstract data models, state machines, and message processing rules. |
Rights Management Services Scenario
Protocols used to provide rights management services.
| Specification | Description |
|---|---|
| [MS-RMPR]: Rights Management Services (RMS): Client-to-Server Protocol Specification | Specifies the Rights Management Services Client-to-Server Protocol, a SOAP protocol used to obtain and issue certificates and licenses used for creating and working with protected content. |
| [MS-RMPRS]: Rights Management Services (RMS): Server-to-Server Protocol Specification | Specifies the Rights Management Services (RMS): Server-to-Server Protocol, which is used to communicate information between RMS servers, implementing five interfaces, using either a binary-formatted interface over HTTP or a SOAP-based protocol over HTTP. |
NETWORKING TRANSPORT TASK PROTOCOLS
| Specification | Description |
|---|---|
| [MS-ADTG]: Remote Data Services (RDS) Transport Protocol Specification | Specifies the Remote Data Services (RDS) Transport Protocol, a Microsoft protocol and an HTTP request/response protocol that facilitates remote method definition and invocation, method definitions for executing database commands and for synchronizing database results, and that defines a record format for encoding of database results. |
| [MS-AIPS]: Authenticated Internet Protocol Specification | Specifies the Authenticated Internet Protocol. This protocol supports a more generalized authentication exchange than the Internet Key Exchange Protocol and provides the optimizations in key exchange and policy discoverability. |
| [MS-CHAP]: Extensible Authentication Protocol Method for Microsoft Challenge Handshake Authentication Protocol (CHAP) Specification | Specifies the Extensible Authentication Protocol Method for Microsoft Challenge Handshake Authentication Protocol (CHAP). This protocol enables extensible authentication for network access. |
| [MS-CTA]: Claims Transformation Algorithm | Specifies the Claims Transformation Algorithm (CTA), which consists of two components: a grammar describing a transformation rules language and an algorithm for transforming input claims into output claims. A claim is an assertion about a user identity in the form of a name-value tuple. Sets of claims are transformed from sending authority formats to receiving authority formats at authentication trust traversal boundaries. |
| [MS-DCOM]: Distributed Component Object Model (DCOM) Remote Protocol Specification | Specifies the Distributed Component Object Model (DCOM) Remote Protocol, which exposes application objects via remote procedure calls (RPCs) and consists of a set of extensions layered on the Microsoft Remote Procedure Call Extensions. |
| [MS-DHCPE]: Dynamic Host Configuration Protocol (DHCP) Extensions | Specifies the Dynamic Host Configuration Protocol (DHCP), which describes the Microsoft specific vendor-class options included in the Microsoft implementation of DHCP. |
| [MS-DHCPF]: DHCP Failover Protocol Extension | Specifies the DHCP Failover Protocol Extension, which extends the DHCP Failover Protocol by encrypting messages sent between the servers in a failover relationship and by providing client implementation options. |
| [MS-DNSP]: Domain Name Service (DNS) Server Management Protocol | Specifies the Domain Name Service (DNS) Server Management Protocol, which defines the RPC interfaces that provide methods for remotely accessing and administering a DNS server. It is a client and server protocol based on RPC that is used in the configuration, management, and monitoring of a DNS server. |
| [MS-DPWSRP]: Devices Profile for Web Services (DPWS): Shared Resource Publishing Data Structure | Specifies the DPWS: Shared Resource Publishing data structure. This data structure is used by the HomeGroup Protocol to advertise shared files and folders in a HomeGroup peer-to-peer network environment. |
| [MS-HNDS]: Host Name Data Structure Extension | Specifies the Host Name Data Structure Extension, which defines the allowable host names that may be assigned to a computer. |
| [MS-ICPR]: ICertPassage Remote Protocol Specification | Specifies the ICertPassage Remote Protocol, a subset of the Windows Client Certificate Enrollment Protocol, as specified in [MS-WCCE]. This protocol only enables the client to enroll certificates, whereas [MS-WCCE] provides enrollment and additional functionality. |
| [MS-IKEE]: Internet Key Exchange Protocol Extensions | Specifies the Internet Key Exchange (IKE) Protocol Extensions, which describe the extensions specified in [RFC2409]. |
| [MS-IPHTTPS]: IP over HTTPS (IP-HTTPS) Tunneling Protocol Specification | Specifies the IP over HTTPS (IP-HTTPS) Tunneling Protocol, a mechanism to transport IPv6 packets on an HTTPS connection. |
| [MS-KKDCP]: Kerberos Key Distribution Center (KDC) Proxy Protocol Specification | Specifies the Kerberos Key Distribution Center (KDC) Proxy Protocol, which provides a mechanism for a client to use a KKDCP server to change passwords and securely obtain Kerberos service tickets from a Kerberos V5 server. |
| [MS-LLMNRP]: Link Local Multicast Name Resolution (LLMNR) Profile | Specifies the Link Local Multicast Name Resolution (LLMNR) Profile, which describes the differences between this profile and the one defined in [RFC4795]. |
| [MS-MSRP]: Messenger Service Remote Protocol Specification | Specifies the Messenger Service Remote Protocol, a set of RPC interfaces that instructs a server to display short text messages to a console user, to deliver messages to a local or remote server for display to a console user, and to manage the names for which the server receives messages. |
| [MS-NBTE]: NetBIOS over TCP (NBT) Extensions | Specifies the NetBIOS over TCP (NetBT) Extensions, as specified in [RFC1001] and [RFC1002]. These extensions modify the syntax of allowable NetBIOS names and the behavior of timers, and add support for multihomed hosts. |
| [MS-OAUT]: OLE Automation Protocol Specification | Specifies the OLE Automation Protocol, which uses DCOM as its transport layer and provides support for an additional set of types as well as for a late-bound calling mechanism. |
| [MS-PASS]: Passport Server Side Include (SSI) Version 1.4 Protocol Specification | Specifies the Passport Server Side Include (SSI) Version 1.4 Protocol, which describes how messages are encapsulated on the wire. |
| [MS-PBSD]: Publication Services Data Structure | Specifies the Publication Services Data Structure. This structure describes the data that computers use to describe themselves and the resources they offer as Web services over IP-based networks. |
| [MS-PCCRC]: Peer Content Caching and Retrieval: Content Identification | Specifies Peer Content Caching and Retrieval: Content Identification, the content information format used by the Windows Branch Caching Framework to uniquely identify content for discovery and retrieval purposes. |
| [MS-PCCRD]: Peer Content Caching and Retrieval Discovery Protocol Specification | Specifies the Peer Content Caching and Retrieval Discovery Protocol, which is based on the Web Services Dynamic Discovery (WS-Discovery) protocol. It is a content caching and retrieval framework based on a peer-to-peer discovery and distribution model. |
| [MS-PCCRR]: Peer Content Caching and Retrieval: Retrieval Protocol Specification | Specifies the Peer Content Caching and Retrieval: Retrieval Protocol. This protocol defines two message exchanges, one for querying the server for the availability of certain content, and the other for retrieving content from a server. |
| [MS-PCCRTP]: Peer Content Caching and Retrieval: HTTP Extensions | Specifies the Peer Content Caching and Retrieval: HTTP Extensions, which implements a new type of content encoding, PeerDist, that can be used in HTTP/1.1. In particular, it specifies the mechanism used by an HTTP/1.1 client and an HTTP/1.1 server to communicate with each other by using the PeerDist content encoding. |
| [MS-PCHC]: Peer Content Caching and Retrieval: Hosted Cache Protocol Specification | Specifies the Peer Content Caching and Retrieval: Hosted Cache Protocol, which is used by clients to offer metadata to a hosted cache server. |
| [MS-PEAP]: Protected Extensible Authentication Protocol (PEAP) Specification | Specifies the Protected Extensible Authentication Protocol (PEAP), which adds security services to the Extensible Authentication Protocol methods. |
| [MS-PPGRH]: Peer-to-Peer Graphing Protocol Specification | Specifies the Peer-to-Peer Graphing Protocol, which establishes and maintains a connected set of nodes (referred to as a graph) and replicates data among the nodes. |
| [MS-PPSEC]: Peer-to-Peer Grouping Security Protocol Specification | Specifies the Peer-to-Peer Grouping Security Protocol (P2P Grouping), which layers on top of the Peer-to-Peer Graphing Protocol [MS-PPGRH] and adds security and discovery services. |
| [MS-PSDP]: Proximity Service Discovery Protocol Specification | Specifies the Proximity Service Discovery Protocol, which conveys service discovery information, such as service advertisements, as part of Beacon frames, as specified in [IEEE802.11-2007]. |
| [MS-RAA]: Remote Authorization API Protocol | Specifies the Remote Authorization API Protocol, which is used to perform “what-if” authorization queries on remote computers. It allows applications to simulate an access control decision that would be made when a principal attempts to access a remote resource protected with an authorization policy. |
| [MS-SFU]: Kerberos Protocol Extensions: Service for User and Constrained Delegation Protocol Specification | Specifies the Kerberos Protocol Extensions: Service for User and Constrained Delegation Protocol, which are two extensions to the Kerberos protocol as developed by Microsoft. These two extensions, collectively known as Service for User (S4U), enable an application service to obtain a Kerberos service ticket on behalf of a user. |
| [MS-SNID]: Server Network Information Discovery Protocol | Specifies the Server Network Information Discovery Protocol, which defines a pair of request and response messages by which a protocol client can locate protocol servers within the broadcast/multicast scope. The client can then get network information (such as NetBIOS name, Internet Protocol version 4 (IPv4), and Internet Protocol version 6 (IPv6) addresses) of the servers. |
| [MS-UNMP]: User Name Mapping Protocol Specification | Specifies the User Name Mapping Protocol, which maps Windows domain user and group account names to the POSIX user and group identifiers used in AUTH_UNIX authentication, and vice versa. This enables the association of user names for users who have different identities in Windows-based and UNIX-based domains. |
| [MS-V4OF]: IPv4 Over IEEE 1394 Protocol Extensions | Specifies the IPv4 Over IEEE 1394 Protocol Extension, which is the Microsoft extension to the IPv4 over IEEE 1394 protocol to support bridging and clarifies the implementation details as specified in [RFC2734] where necessary. |
| [MS-WCFESAN]: WCF-Based Encrypted Server Administration and Notification Protocol Specification | Specifies the WCF-Based Encrypted Server Administration and Notification Protocol, which enables the protocol client to monitor and manage the protocol server in the same network. |
| [MS-WINSRA]: Windows Internet Naming Service (WINS) Replication and Autodiscovery Protocol Specification | Specifies the Windows Internet Naming Service (WINS) Replication and Autodiscovery Protocol, the Microsoft implementation of NetBIOS Name Server (NBNS). This protocol supports resolution of NetBIOS names to IPv4 addresses. |
| [MS-WSPE]: WebSocket Protocol Extensions | Specifies the WebSocket Protocol: Disable Masking Extension, which extends the WebSocket Protocol to improve performance by allowing developers to set a property to disable masking. |
| [MS-WSUSSS]: Windows Update Services: Server-Server Protocol Specification | Specifies the Windows Update Services: Server-Server Protocol, which enables a hierarchically organized collection of servers to synchronize metadata and content associated with software updates over the Internet by using SOAP and HTTP protocols. |
| [MS-WUSP]: Windows Update Services: Client-Server Protocol Specification | Specifies the Windows Update Services: Client-Server Protocol, which enables machines to discover and download software updates over the Internet using the SOAP and HTTP protocols. |
| [MS-XCA]: Xpress Compression Algorithm | Specifies the two variants of the Xpress Compression Algorithm, LZ77+Huffmann and plain LZ77, and their respective decompression algorithms. This algorithm efficiently compresses data that contains repeated byte sequences. It is not designed to compress image, audio, or video data. Between the trade-offs of compressed size and CPU cost, it heavily emphasizes low CPU cost. |
ROYALTY FREE PROTOCOLS
Common Internet File System Protocols
| Specification | Description |
|---|---|
| [MS-CIFS]: Common Internet File System (CIFS) Protocol Specification | Specifies the Common Internet File System (CIFS) Protocol, a cross-platform, transport-independent protocol that provides a mechanism for client systems to use file and print services made available by server systems over a network. |
ONE-TIME FLAT FEE (UNIFORM PRICING) PROTOCOLS
| Specification | Description |
|---|---|
| [MS-CHAP]: Extensible Authentication Protocol Method for Microsoft Challenge Handshake Authentication Protocol (CHAP) Specification | Specifies the Extensible Authentication Protocol Method for Microsoft Challenge Handshake Authentication Protocol (CHAP). This protocol enables extensible authentication for network access. |
| [MS-CIFS]: Common Internet File System (CIFS) Protocol Specification | Specifies the Common Internet File System (CIFS) Protocol, a cross-platform, transport-independent protocol that provides a mechanism for client systems to use file and print services made available by server systems over a network. |
| [MS-DMRP]: Disk Management Remote Protocol Specification | Specifies the Disk Management Remote Protocol Specification, a set of Distributed Component Object Model (DCOM) interfaces that manages storage objects on a machine. |
| [MS-DSSP]: Directory Services Setup Remote Protocol Specification | Specifies the Directory Services Setup Remote Protocol, which exposes an RPC interface that a client can call to obtain domain-related computer state and configuration information. |
| [MS-SNTP]: Network Time Protocol (NTP) Authentication Extensions | Specifies the Network Time Protocol (NTP) Authentication Extensions, which is an authentication extension to the Network Time Protocol (NTP) version 3 ([RFC1305]) and the Simple Network Time Protocol (SNTP) version 4 ([RFC2030]). |
| [MS-SRPL]: Directory Replication Service (DRS) Protocol Extensions for SMTP | Specifies the Directory Replication Service (DRS) Protocol Extensions for SMTP. These are extensions to the DRS Protocol for transport over the Simple Mail Transfer Protocol (SMTP), which provide an alternate transport for the DRS protocol that may allow domain controllers to perform replication in environments where the RPC transport mechanism is unsuitable. |
| [MS-SRVS]: Server Service Remote Protocol Specification | Specifies the Server Service Remote Protocol, which remotely enables file and printer sharing and named pipe access to the server through the Server Message Block Protocol. |
| [MS-UNMP]: User Name Mapping Protocol Specification | Specifies the User Name Mapping Protocol, which maps Windows domain user and group account names to the POSIX user and group identifiers used in AUTH_UNIX authentication, and vice versa. This enables the association of user names for users who have different identities in Windows-based and UNIX-based domains. |
| [MS-W32T]: W32Time Remote Protocol Specification | Specifies the W32Time Remote Protocol, which is used for controlling and monitoring a time service on a machine. This RPC interface supports time services that synchronize time using the Network Time Protocol (NTP) Version 3, as specified in [RFC1305], as well as platform-specific hardware time sources. |
ONE-TIME FLAT FEE (VARIABLE PRICING) PROTOCOLS
| Specification | Description |
|---|---|
| [MS-ADTG]: Remote Data Services (RDS) Transport Protocol Specification | Specifies the Remote Data Services (RDS) Transport Protocol, a Microsoft protocol and an HTTP request/response protocol that facilitates remote method definition and invocation, method definitions for executing database commands and for synchronizing database results, and that defines a record format for encoding of database results. |
| [MS-CIFS]: Common Internet File System (CIFS) Protocol | Specifies the Common Internet File System (CIFS) Protocol, a cross-platform, transport-independent protocol that provides a mechanism for client systems to use file and print services made available by server systems over a network. |
| [MS-DCOM]: Distributed Component Object Model (DCOM) Remote Protocol Specification | Specifies the Distributed Component Object Model (DCOM) Remote Protocol, which exposes application objects via remote procedure calls (RPCs) and consists of a set of extensions layered on the Microsoft Remote Procedure Call Extensions. |
| [MS-FSA]: File System Algorithms | Specifies File System Algorithms in terms of an abstract model for how an object store can be implemented to support the Server Message Block (SMB) Version 1.0 Protocol [MS-SMB] and the Server Message Block (SMB) Version 2.0 Protocol [MS-SMB2]. |
| [MS-LSAT]: Local Security Authority (Translation Methods) Remote Protocol Specification | Specifies the Local Security Authority (Translation Methods) Remote Protocol, which is implemented in Windows-based products to translate identifiers for security principal between human-readable and machine-readable forms. |
| [MS-MCIS]: Content Indexing Services Protocol Specification | Specifies the Content Indexing Services Protocol, which enables a client to communicate with a server hosting an indexing service to issue queries. |
| [MS-MSRP]: Messenger Service Remote Protocol Specification | Specifies the Messenger Service Remote Protocol, a set of RPC interfaces that instructs a server to display short text messages to a console user, to deliver messages to a local or remote server for display to a console user, and to manage the names for which the server receives messages. |
| [MS-SAMR]: Security Account Manager (SAM) Remote Protocol Specification (Client-to-Server) | Specifies the Security Account Manager (SAM) Remote Protocol Specification (Client-to-Server), which supports printing and spooling operations that are synchronous between client and server. |
| [MS-SAMS]: Security Account Manager (SAM) Remote Protocol Specification (Server-to-Server) | Specifies the Security Account Manager (SAM) Remote Protocol Specification (Server-to-Server). Domain controllers (DCs) use this protocol to forward time-critical database changes to the primary domain controller (PDC), and to forward time-critical database changes from a read-only domain controller (RODC) to a writable NC replica within the same domain outside the normal replication protocol. |
| [MS-SMB]: Server Message Block (SMB) Protocol Specification | Specifies the Server Message Block (SMB) Protocol, which defines extensions to the existing Common Internet File System (CIFS) specification that have been implemented by Microsoft since the publication of the [CIFS] specification. |
| [MS-WKST]: Workstation Service Remote Protocol Specification | Specifies the WS-Enumeration Directory Services Protocol Extensions, a set of extensions to the Web Services Enumeration (WS-Enumeration) [WSENUM] protocol for facilitating SOAP-based search operations against directory servers. |
Show: