SecPkgInfoA structure (sspi.h)
The SecPkgInfo structure provides general information about a security package, such as its name and capabilities.
Syntax
typedef struct _SecPkgInfoA {
unsigned long fCapabilities;
unsigned short wVersion;
unsigned short wRPCID;
unsigned long cbMaxToken;
SEC_CHAR *Name;
SEC_CHAR *Comment;
} SecPkgInfoA, *PSecPkgInfoA;
Members
fCapabilities
Set of bit flags that describes the capabilities of the security package. This member can be a combination of the following flags.
| Value | Meaning |
|---|---|
|
The security package supports the MakeSignature and VerifySignature functions. |
|
The security package supports the EncryptMessage (General) and DecryptMessage (General) functions. |
|
The package is interested only in the security-token portion of messages, and will ignore any other buffers. This is a performance-related issue. |
|
Supports datagram-style authentication. For more information, see
SSPI Context Semantics.
Important The Microsoft Kerberos package does not support datagram contexts in user-to-user mode.
|
|
Supports connection-oriented style authentication. For more information, see SSPI Context Semantics. |
|
Multiple legs are required for authentication. |
|
Server authentication support is not provided. |
|
Supports extended error handling. For more information, see Extended Error Information. |
|
Supports Windows impersonation in server contexts. |
|
Understands Windows principal and target names. |
|
Supports stream semantics. For more information, see SSPI Context Semantics. |
|
Can be used by the Microsoft Negotiate security package. |
|
Supports GSS compatibility. |
|
Supports LsaLogonUser. |
|
Token buffers are in ASCII characters format. |
|
Supports separating large tokens into smaller buffers so that applications can make repeated calls to InitializeSecurityContext (General) and AcceptSecurityContext (General) with the smaller buffers to complete authentication. |
|
Supports mutual authentication. |
|
Supports delegation. |
|
The security package supports using a checksum instead of in-place encryption when calling the EncryptMessage function. |
|
Supports callers with restricted tokens. |
|
The security package extends the Microsoft Negotiate security package. There can be at most one package of this type. |
|
This package is negotiated by the package of type SECPKG_FLAG_NEGO_EXTENDER. |
|
This package receives all calls from app container apps. |
|
This package receives calls from app container apps if one of the following checks succeeds.
|
|
The caller is an app container. |
|
The caller can use default credentials. |
|
The caller can only use supplied credentials. |
wVersion
Specifies the version of the package protocol. Must be 1.
wRPCID
Specifies a DCE RPC identifier, if appropriate. If the package does not implement one of the DCE registered security systems, the reserved value SECPKG_ID_NONE is used.
cbMaxToken
Specifies the maximum size, in bytes, of the token.
Name
Pointer to a null-terminated string that contains the name of the security package.
Comment
Pointer to a null-terminated string. This can be any additional string passed back by the package.
Remarks
Note
The sspi.h header defines SecPkgInfo as an alias which automatically selects the ANSI or Unicode version of this function based on the definition of the UNICODE preprocessor constant. Mixing usage of the encoding-neutral alias with code that not encoding-neutral can lead to mismatches that result in compilation or runtime errors. For more information, see Conventions for Function Prototypes.
Requirements
| Requirement | Value |
|---|---|
| Minimum supported client | Windows XP [desktop apps only] |
| Minimum supported server | Windows Server 2003 [desktop apps only] |
| Header | sspi.h (include Security.h) |
See also
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for