Authorization Plug-in Entry Points

Authorization plug-ins are configured only for an Internet Information Services (IIS) host process. Only one authorization plug-in can be configured per virtual directory.

All authorization plug-ins must support the following entry points:

The following entry point is optional:

The following table provides an overview of the authorization plug-in entry points in the Windows Remote Management (WinRM) Plug-in API.

FunctionDescription
WSMAN_PLUGIN_ AUTHORIZE_OPERATION

Called to authorize a specific operation.

The DLL entry point name for this method must be WSManPluginAuthzOperation.

WSMAN_PLUGIN_ AUTHORIZE_QUERY_QUOTA

Called after a connection has been authorized to retrieve quota information for the user.

The DLL entry point name for this method must be WSManPluginAuthzQueryQuota.

WSMAN_PLUGIN_ AUTHORIZE_RELEASE_CONTEXT

Called to release the context that a plug-in reports from either the WSManPluginAuthzUserComplete or WSManPluginAuthzOperationComplete methods.

The DLL entry point name for this method must be WSManPluginAuthzReleaseContext.

WSMAN_PLUGIN_AUTHORIZE_USER

Called to determine whether the user is allowed to carry out a request.

The dynamic-link library (DLL) entry point name for this method must be WSManPluginAuthzUser.

 

 

 

Show: