lpSecurityDescriptor - Infinite Lexicon - Infinite Lexicon

lpSecurityDescriptor

lpSecurityDescriptor is a Windows API parameter that provides a pointer to a SECURITY_DESCRIPTOR structure. A security descriptor defines the security attributes of a securable object, including its owner, primary group, a discretionary access control list (DACL), and a system access control list (SACL). The DACL governs access permissions granted or denied to users or groups, while the SACL governs auditing.

Security descriptors can be in absolute or self-relative format. Many APIs expect a self-relative descriptor, which

Memory management is an important consideration. When an API allocates and returns a SECURITY_DESCRIPTOR, the caller

Notes on usage guidelines: passing NULL for lpSecurityDescriptor may indicate that the current object security should

InitializeSecurityDescriptor,

SetSecurityDescriptorOwner,

SetSecurityDescriptorGroup,

SetSecurityDescriptorDacl,

SetSecurityDescriptorSacl

lpSecurityDescriptor.

a

SECURITY_INFORMATION

a

a

lpSecurityDescriptor

a