2.2.3.4 LSAPR_SECURITY_DESCRIPTOR

The LSAPR_SECURITY_DESCRIPTOR structure defines an object's security descriptor.

This structure has no effect on message processing in any environment.

 typedef struct _LSAPR_SECURITY_DESCRIPTOR {
   unsigned char Revision;
   unsigned char Sbz1;
   SECURITY_DESCRIPTOR_CONTROL Control;
   PRPC_SID Owner;
   PRPC_SID Group;
   PLSAPR_ACL Sacl;
   PLSAPR_ACL Dacl;
 } LSAPR_SECURITY_DESCRIPTOR,
  *PLSAPR_SECURITY_DESCRIPTOR;

Revision: The security descriptor revision level. This field MUST be ignored. The content is unspecified, and no requirements are placed on its value because it is never used.

Sbz1: This field is used for alignment. This field MUST be ignored. The content is unspecified, and no requirements are placed on its value because it is never used.

Control: A set of flags (as specified in section 2.2.3.3) that qualify the meaning of the security descriptor or its individual fields.

Owner: A pointer to the RPC_SID structure that represents an object's owner as a SID.

Group: A pointer to the RPC_SID structure that represents an object's primary group as a SID.

Sacl: A pointer to an ACL structure (as specified in 2.2.3.2) that contains a system access control list (SACL).

Dacl: A pointer to an ACL structure that contains a discretionary access control list (DACL).

The SECURITY_DESCRIPTOR structure is specified in [MS-DTYP] section 2.4.6.