LSA_TOKEN_INFORMATION_NULL structure

The LSA_TOKEN_INFORMATION_NULL structure is used in cases where a non-authenticated system access is needed.

For example, a non-authentication network circuit (such as a null session) can be given NULL information. This results in an anonymous token being generated for the logon. An anonymous token gives the user no ability to access protected system resources, but does allow access to non-protected system resources.

Syntax


typedef struct _LSA_TOKEN_INFORMATION_NULL {
  LARGE_INTEGER ExpirationTime;
  PTOKEN_GROUPS Groups;
} LSA_TOKEN_INFORMATION_NULL, *PLSA_TOKEN_INFORMATION_NULL;

Members

ExpirationTime

Time at which the security context becomes not valid. Use a value in the distant future if the context never expires.

Groups

TOKEN_GROUPS structure containing the security identifiers (SIDs) of groups the user is to be made a member of. This should not include WORLD or other SIDs defined and assigned by the system.

Each SID is expected to be in a separately allocated block of memory. The TOKEN_GROUPS structure is also expected to be in a separately allocated block of memory.

Requirements

Minimum supported client

Windows XP [desktop apps only]

Minimum supported server

Windows Server 2003 [desktop apps only]

Header

Ntsecpkg.h

 

 

Show: