3 import "security.idl", "misc.idl", "samr.idl";
6 uuid("e3514235-4b06-11d1-ab04-00c04fc2dcd2"),
8 endpoint("ncacn_np:[\\pipe\\lsass]","ncacn_np:[\\pipe\\protected_storage]", "ncacn_ip_tcp:", "ncalrpc:"),
10 helpstring("Active Directory Replication"),
11 helper("librpc/ndr/ndr_drsuapi.h"),
12 pointer_default(unique)
16 typedef bitmap samr_GroupAttrs samr_GroupAttrs;
20 typedef [bitmap32bit] bitmap {
21 DRSUAPI_SUPPORTED_EXTENSION_BASE = 0x00000001,
22 DRSUAPI_SUPPORTED_EXTENSION_ASYNC_REPLICATION = 0x00000002,
23 DRSUAPI_SUPPORTED_EXTENSION_REMOVEAPI = 0x00000004,
24 DRSUAPI_SUPPORTED_EXTENSION_MOVEREQ_V2 = 0x00000008,
25 DRSUAPI_SUPPORTED_EXTENSION_GETCHG_COMPRESS = 0x00000010,
26 DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V1 = 0x00000020,
27 DRSUAPI_SUPPORTED_EXTENSION_RESTORE_USN_OPTIMIZATION = 0x00000040,
28 DRSUAPI_SUPPORTED_EXTENSION_00000080 = 0x00000080,
29 DRSUAPI_SUPPORTED_EXTENSION_KCC_EXECUTE = 0x00000100,
30 DRSUAPI_SUPPORTED_EXTENSION_ADDENTRY_V2 = 0x00000200,
31 DRSUAPI_SUPPORTED_EXTENSION_LINKED_VALUE_REPLICATION = 0x00000400,
32 DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V2 = 0x00000800,
33 DRSUAPI_SUPPORTED_EXTENSION_INSTANCE_TYPE_NOT_REQ_ON_MOD= 0x00001000,
34 DRSUAPI_SUPPORTED_EXTENSION_CRYPTO_BIND = 0x00002000,
35 DRSUAPI_SUPPORTED_EXTENSION_GET_REPL_INFO = 0x00004000,
36 DRSUAPI_SUPPORTED_EXTENSION_STRONG_ENCRYPTION = 0x00008000,
37 DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V01 = 0x00010000,
38 DRSUAPI_SUPPORTED_EXTENSION_TRANSITIVE_MEMBERSHIP = 0x00020000,
39 DRSUAPI_SUPPORTED_EXTENSION_ADD_SID_HISTORY = 0x00040000,
40 DRSUAPI_SUPPORTED_EXTENSION_POST_BETA3 = 0x00080000,
41 DRSUAPI_SUPPORTED_EXTENSION_00100000 = 0x00100000,
42 DRSUAPI_SUPPORTED_EXTENSION_GET_MEMBERSHIPS2 = 0x00200000,
43 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V6 = 0x00400000,
44 DRSUAPI_SUPPORTED_EXTENSION_NONDOMAIN_NCS = 0x00800000,
45 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V8 = 0x01000000,
46 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V5 = 0x02000000,
47 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V6 = 0x04000000,
49 * the following 3 have the same value
50 * repadmin.exe /bind says that
52 DRSUAPI_SUPPORTED_EXTENSION_ADDENTRYREPLY_V3 = 0x08000000,
53 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V7 = 0x08000000,
54 DRSUAPI_SUPPORTED_EXTENSION_VERIFY_OBJECT = 0x08000000,
55 DRSUAPI_SUPPORTED_EXTENSION_XPRESS_COMPRESS = 0x10000000,
56 DRSUAPI_SUPPORTED_EXTENSION_20000000 = 0x20000000,
57 DRSUAPI_SUPPORTED_EXTENSION_40000000 = 0x40000000,
58 DRSUAPI_SUPPORTED_EXTENSION_80000000 = 0x80000000
59 } drsuapi_SupportedExtensions;
61 /* this is used by w2k */
63 drsuapi_SupportedExtensions supported_extensions;
66 } drsuapi_DsBindInfo24;
68 /* this is used by w2k3 */
70 drsuapi_SupportedExtensions supported_extensions;
74 } drsuapi_DsBindInfo28;
77 [flag(NDR_REMAINING)] DATA_BLOB info;
78 } drsuapi_DsBindInfoFallBack;
80 typedef [nodiscriminant] union {
81 [case(24)][subcontext(4)] drsuapi_DsBindInfo24 info24;
82 [case(28)][subcontext(4)] drsuapi_DsBindInfo28 info28;
83 [default][subcontext(4)] drsuapi_DsBindInfoFallBack FallBack;
86 /* the drsuapi_DsBindInfoCtr was this before
87 * typedef [flag(NDR_PAHEX)] struct {
88 * [range(1,10000)] uint32 length;
89 * [size_is(length)] uint8 data[];
90 * } drsuapi_DsBindInfo;
92 * but we don't want the caller to manually decode this blob,
93 * so we're doing it here
97 [range(1,10000)] uint32 length;
98 [switch_is(length)] drsuapi_DsBindInfo info;
99 } drsuapi_DsBindInfoCtr;
101 /* this is a magic guid you need to pass to DsBind to make drsuapi_DsWriteAccountSpn() work
103 * maybe the bind_guid could also be the invocation_id see drsuapi_DsReplicaConnection04
105 const char *DRSUAPI_DS_BIND_GUID = "e24d201a-4fd6-11d1-a3da-0000f875ae0d";
107 * this magic guid are needed to fetch the whole tree with drsuapi_DsGetNCChanges()
108 * as administrator and this values are also used in the destination_dsa_guid field
109 * of drsuapi_DsGetNCChangesReq5/8 and the source_dsa_guid is zero.
111 const char *DRSUAPI_DS_BIND_GUID_W2K = "6abec3d1-3054-41c8-a362-5a0c5b7d5d71";
112 const char *DRSUAPI_DS_BIND_GUID_W2K3 = "6afab99c-6e26-464a-975f-f58f105218bc";
114 [public] WERROR drsuapi_DsBind(
115 [in,unique] GUID *bind_guid,
116 [in,out,unique] drsuapi_DsBindInfoCtr *bind_info,
117 [out] policy_handle *bind_handle
122 WERROR drsuapi_DsUnbind(
123 [in,out] policy_handle *bind_handle
128 typedef [public,gensize] struct {
129 [value(ndr_size_drsuapi_DsReplicaObjectIdentifier(r, ndr->flags)-4)] uint32 __ndr_size;
130 [value(ndr_size_dom_sid28(&sid, ndr->flags))] uint32 __ndr_size_sid;
133 [value(strlen_m(dn))] uint32 __ndr_size_dn;
134 [charset(UTF16),size_is(__ndr_size_dn+1)] uint16 dn[];
135 } drsuapi_DsReplicaObjectIdentifier;
137 typedef [public] bitmap {
138 DRSUAPI_DS_REPLICA_SYNC_ASYNCHRONOUS_OPERATION = 0x00000001,
139 DRSUAPI_DS_REPLICA_SYNC_WRITEABLE = 0x00000002,
140 DRSUAPI_DS_REPLICA_SYNC_PERIODIC = 0x00000004,
141 DRSUAPI_DS_REPLICA_SYNC_INTERSITE_MESSAGING = 0x00000008,
142 DRSUAPI_DS_REPLICA_SYNC_ALL_SOURCES = 0x00000010,
143 DRSUAPI_DS_REPLICA_SYNC_FULL = 0x00000020,
144 DRSUAPI_DS_REPLICA_SYNC_URGENT = 0x00000040,
145 DRSUAPI_DS_REPLICA_SYNC_NO_DISCARD = 0x00000080,
146 DRSUAPI_DS_REPLICA_SYNC_FORCE = 0x00000100,
147 DRSUAPI_DS_REPLICA_SYNC_ADD_REFERENCE = 0x00000200,
148 DRSUAPI_DS_REPLICA_SYNC_NEVER_COMPLETED = 0x00000400,
149 DRSUAPI_DS_REPLICA_SYNC_TWO_WAY = 0x00000800,
150 DRSUAPI_DS_REPLICA_SYNC_NEVER_NOTIFY = 0x00001000,
151 DRSUAPI_DS_REPLICA_SYNC_INITIAL = 0x00002000,
152 DRSUAPI_DS_REPLICA_SYNC_USE_COMPRESSION = 0x00004000,
153 DRSUAPI_DS_REPLICA_SYNC_ABANDONED = 0x00008000,
154 DRSUAPI_DS_REPLICA_SYNC_INITIAL_IN_PROGRESS = 0x00010000,
155 DRSUAPI_DS_REPLICA_SYNC_PARTIAL_ATTRIBUTE_SET = 0x00020000,
156 DRSUAPI_DS_REPLICA_SYNC_REQUEUE = 0x00040000,
157 DRSUAPI_DS_REPLICA_SYNC_NOTIFICATION = 0x00080000,
158 DRSUAPI_DS_REPLICA_SYNC_ASYNCHRONOUS_REPLICA = 0x00100000,
159 DRSUAPI_DS_REPLICA_SYNC_CRITICAL = 0x00200000,
160 DRSUAPI_DS_REPLICA_SYNC_FULL_IN_PROGRESS = 0x00400000,
161 DRSUAPI_DS_REPLICA_SYNC_PREEMPTED = 0x00800000
162 } drsuapi_DsReplicaSyncOptions;
165 drsuapi_DsReplicaObjectIdentifier *naming_context;
166 GUID source_dsa_guid;
167 astring *other_info; /* I assume this is related to the repsFromTo1OtherInfo dns_name */
168 drsuapi_DsReplicaSyncOptions options;
169 } drsuapi_DsReplicaSyncRequest1;
171 typedef [switch_type(int32)] union {
172 [case(1)] drsuapi_DsReplicaSyncRequest1 req1;
173 } drsuapi_DsReplicaSyncRequest;
175 WERROR drsuapi_DsReplicaSync(
176 [in] policy_handle *bind_handle,
178 [in,switch_is(level)] drsuapi_DsReplicaSyncRequest req
183 typedef [public] struct {
184 hyper tmp_highest_usn; /* updated after each object update */
186 hyper highest_usn; /* updated after a full replication cycle */
187 } drsuapi_DsReplicaHighWaterMark;
189 typedef [public] struct {
190 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
191 hyper highest_usn; /* updated after a full replication cycle */
192 } drsuapi_DsReplicaCursor;
197 [range(0,0x100000)] uint32 count;
199 [size_is(count)] drsuapi_DsReplicaCursor cursors[];
200 } drsuapi_DsReplicaCursorCtrEx;
202 typedef [public] bitmap {
203 /* the _WRITEABLE flag indicates a replication with all attributes
207 DRSUAPI_DS_REPLICA_NEIGHBOUR_WRITEABLE = 0x00000010,
208 DRSUAPI_DS_REPLICA_NEIGHBOUR_SYNC_ON_STARTUP = 0x00000020,
209 DRSUAPI_DS_REPLICA_NEIGHBOUR_DO_SCHEDULED_SYNCS = 0x00000040,
210 DRSUAPI_DS_REPLICA_NEIGHBOUR_USE_ASYNC_INTERSIDE_TRANSPORT = 0x00000080,
211 DRSUAPI_DS_REPLICA_NEIGHBOUR_TWO_WAY_SYNC = 0x00000200,
212 DRSUAPI_DS_REPLICA_NEIGHBOUR_RETURN_OBJECT_PARENTS = 0x00000800,
213 DRSUAPI_DS_REPLICA_NEIGHBOUR_FULL_IN_PROGRESS = 0x00001000, /* was 0x00010000, */
214 DRSUAPI_DS_REPLICA_NEIGHBOUR_FULL_NEXT_PACKET = 0x00002000, /* was 0x00020000, */
215 DRSUAPI_DS_REPLICA_NEIGHBOUR_NEVER_SYNCED = 0x00200000,
216 DRSUAPI_DS_REPLICA_NEIGHBOUR_PREEMPTED = 0x01000000,
217 DRSUAPI_DS_REPLICA_NEIGHBOUR_IGNORE_CHANGE_NOTIFICATIONS = 0x04000000,
218 DRSUAPI_DS_REPLICA_NEIGHBOUR_DISABLE_SCHEDULED_SYNC = 0x08000000,
220 * the following NOTE applies to DsGetNCChangesRequest5:
221 * - the data is only compressed when 10 or more objects are replicated
222 * - but there could also be a size limit of 35 KBytes or something like that
223 * - the reply is DsGetNCChangesCtr2
224 * - maybe the same applies to DsGetNCChangesRequest8...
228 DRSUAPI_DS_REPLICA_NEIGHBOUR_COMPRESS_CHANGES = 0x10000000,
229 DRSUAPI_DS_REPLICA_NEIGHBOUR_NO_CHANGE_NOTIFICATIONS = 0x20000000,
230 DRSUAPI_DS_REPLICA_NEIGHBOUR_PARTIAL_ATTRIBUTE_SET = 0x40000000
231 } drsuapi_DsReplicaNeighbourFlags;
234 GUID destination_dsa_guid;
235 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
236 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
237 drsuapi_DsReplicaHighWaterMark highwatermark;
238 drsuapi_DsReplicaCursorCtrEx *uptodateness_vector;
239 drsuapi_DsReplicaNeighbourFlags replica_flags;
240 uint32 max_object_count; /* w2k3 uses min(133,max(100,max_object_count)) */
241 uint32 max_ndr_size; /* w2k3 seems to ignore this */
244 } drsuapi_DsGetNCChangesRequest5;
247 * In DRSUAPI all attributes with syntax 2.5.5.2
248 * are identified by uint32 values
250 * the following table shows the mapping used between the two representations
251 * e.g. - objectClass 'nTDSDSA' has governsID: 1.2.840.113556.1.5.7000.47
252 * and a UINT32-ID of '0x0017002F'.
253 * - so the OID 1.2.840.113556.1.5.7000.47 is splitted into a
254 * OID-prefix: 1.2.840.113556.1.5.7000
255 * and a value: 47 => 0x2F
256 * - the mapping table gives a UINT32-prefix: 0x00170000
257 * - and the UINT32-ID is 0x0017002F = 0x00170000 | 0x2F
259 * This prefix mapping table is replied in the drsuapi_DsReplicaOIDMapping_Ctr
260 * array. The following are the default mappings of w2k3
262 * OID-prefix => UINT32-Id prefix
264 * 2.5.4.* => 0x00000000 (standard attributes RFC2256 core.schema)
265 * 2.5.6.* => 0x00010000 (standard object classes RFC2256 core.schema)
266 * 1.2.840.113556.1.2.* => 0x00020000
267 * 1.2.840.113556.1.3.* => 0x00030000
268 * 2.5.5.* => 0x00080000 (attributeSyntax OID's)
269 * 1.2.840.113556.1.4.* => 0x00090000
270 * 1.2.840.113556.1.5.* => 0x000A0000
271 * 2.16.840.1.113730.3.* => 0x00140000
272 * 0.9.2342.19200300.100.1.* => 0x00150000
273 * 2.16.840.1.113730.3.1.* => 0x00160000
274 * 1.2.840.113556.1.5.7000.* => 0x00170000
275 * 2.5.21.* => 0x00180000 (attrs for SubSchema)
276 * 2.5.18.* => 0x00190000 (createTimeStamp,modifyTimeStamp, SubSchema)
277 * 2.5.20.* => 0x001A0000
278 * 1.3.6.1.4.1.1466.101.119.* => 0x001B0000 (dynamicObject, entryTTL)
279 * 2.16.840.1.113730.3.2.* => 0x001C0000
280 * 1.3.6.1.4.1.250.1.* => 0x001D0000
281 * 1.2.840.113549.1.9.* => 0x001E0000 (unstructuredAddress,unstructuredName)
282 * 0.9.2342.19200300.100.4.* => 0x001F0000
284 * Here's a list of used 'attributeSyntax' OID's
286 * 2.5.5.1 => Object(DS-DN) string
287 * struct drsuapi_DsObjectIdentifier3
289 * 2.5.5.2 => OID-string
290 * => all values are represented as uint32 values in drsuapi
291 * => governsID, attributeID and attributeSyntax returned as OID-Strings in LDAP
292 * => mayContain, mustContain and all other attributes with 2.5.5.2 syntax
293 * are returned as attribute names
295 * 2.5.5.4 => String(Teletex) case-insensitive string with teletex charset
297 * 2.5.5.5 => String(IA5) case-sensitive string
299 * 2.5.5.6 => String(Numeric)
300 * => eg. internationalISDNNumber
302 * 2.5.5.7 => Object(DN-Binary) B:<byte count>:<bytes>:<object DN>
303 * => e.g. wellKnownObjects
309 * 2.5.5.10 => DATA_BLOB
312 * 2.5.5.11 => LDAP timestring
315 * 2.5.5.12 => String(Unicode) case-insensitive string
316 * => 'standard strings'
318 * 2.5.5.13 => Object(Presentation-Address) string
319 * => used in objectClass applicationEntity
321 * 2.5.5.14 => Object(DN-String) S:<char count>:<string>:<object DN>
324 * 2.5.5.15 => ntSecurityDescriptor
328 * 2.5.5.17 => dom_sid
330 typedef [nopush,nopull] struct {
331 [range(0,10000),value(ndr_size_drsuapi_DsReplicaOID_oid(oid, 0))] uint32 __ndr_size;
332 [size_is(__ndr_size),charset(DOS)] uint8 *oid; /* it's encoded with asn1_write_OID_String() */
333 } drsuapi_DsReplicaOID;
337 drsuapi_DsReplicaOID oid;
338 } drsuapi_DsReplicaOIDMapping;
340 typedef [public] struct {
341 [range(0,0x100000)] uint32 num_mappings;
342 [size_is(num_mappings)] drsuapi_DsReplicaOIDMapping *mappings;
343 } drsuapi_DsReplicaOIDMapping_Ctr;
345 typedef [flag(NDR_PAHEX),v1_enum] enum {
346 DRSUAPI_OBJECTCLASS_top = 0x00010000,
347 DRSUAPI_OBJECTCLASS_classSchema = 0x0003000d,
348 DRSUAPI_OBJECTCLASS_attributeSchema = 0x0003000e
349 } drsuapi_DsObjectClassId;
351 typedef [flag(NDR_PAHEX),v1_enum,public] enum {
352 DRSUAPI_ATTRIBUTE_objectClass = 0x00000000,
353 DRSUAPI_ATTRIBUTE_description = 0x0000000d,
354 DRSUAPI_ATTRIBUTE_member = 0x0000001f,
355 DRSUAPI_ATTRIBUTE_instanceType = 0x00020001,
356 DRSUAPI_ATTRIBUTE_whenCreated = 0x00020002,
357 DRSUAPI_ATTRIBUTE_hasMasterNCs = 0x0002000e,
358 DRSUAPI_ATTRIBUTE_governsID = 0x00020016,
359 DRSUAPI_ATTRIBUTE_attributeID = 0x0002001e,
360 DRSUAPI_ATTRIBUTE_attributeSyntax = 0x00020020,
361 DRSUAPI_ATTRIBUTE_isSingleValued = 0x00020021,
362 DRSUAPI_ATTRIBUTE_rangeLower = 0x00020022,
363 DRSUAPI_ATTRIBUTE_rangeUpper = 0x00020023,
364 DRSUAPI_ATTRIBUTE_dMDLocation = 0x00020024,
365 DRSUAPI_ATTRIBUTE_objectVersion = 0x0002004c,
366 DRSUAPI_ATTRIBUTE_invocationId = 0x00020073,
367 DRSUAPI_ATTRIBUTE_showInAdvancedViewOnly = 0x000200a9,
368 DRSUAPI_ATTRIBUTE_adminDisplayName = 0x000200c2,
369 DRSUAPI_ATTRIBUTE_adminDescription = 0x000200e2,
370 DRSUAPI_ATTRIBUTE_oMSyntax = 0x000200e7,
371 DRSUAPI_ATTRIBUTE_ntSecurityDescriptor = 0x00020119,
372 DRSUAPI_ATTRIBUTE_searchFlags = 0x0002014e,
373 DRSUAPI_ATTRIBUTE_lDAPDisplayName = 0x000201cc,
374 DRSUAPI_ATTRIBUTE_name = 0x00090001,
375 DRSUAPI_ATTRIBUTE_currentValue = 0x0009001b,
376 DRSUAPI_ATTRIBUTE_objectSid = 0x00090092,
377 DRSUAPI_ATTRIBUTE_schemaIDGUID = 0x00090094,
378 DRSUAPI_ATTRIBUTE_dBCSPwd = 0x00090037,/* lmPwdHash */
379 DRSUAPI_ATTRIBUTE_unicodePwd = 0x0009005a,/* ntPwdHash */
380 DRSUAPI_ATTRIBUTE_ntPwdHistory = 0x0009005e,
381 DRSUAPI_ATTRIBUTE_priorValue = 0x00090064,
382 DRSUAPI_ATTRIBUTE_supplementalCredentials = 0x0009007d,
383 DRSUAPI_ATTRIBUTE_trustAuthIncoming = 0x00090081,
384 DRSUAPI_ATTRIBUTE_trustAuthOutgoing = 0x00090087,
385 DRSUAPI_ATTRIBUTE_lmPwdHistory = 0x000900a0,
386 DRSUAPI_ATTRIBUTE_sAMAccountName = 0x000900dd,
387 DRSUAPI_ATTRIBUTE_fSMORoleOwner = 0x00090171,
388 DRSUAPI_ATTRIBUTE_systemFlags = 0x00090177,
389 DRSUAPI_ATTRIBUTE_serverReference = 0x00090203,
390 DRSUAPI_ATTRIBUTE_serverReferenceBL = 0x00090204,
391 DRSUAPI_ATTRIBUTE_initialAuthIncoming = 0x0009021b,
392 DRSUAPI_ATTRIBUTE_initialAuthOutgoing = 0x0009021c,
393 DRSUAPI_ATTRIBUTE_wellKnownObjects = 0x0009026a,
394 DRSUAPI_ATTRIBUTE_isMemberOfPartialAttributeSet = 0x0009027f,
395 DRSUAPI_ATTRIBUTE_objectCategory = 0x0009030e,
396 DRSUAPI_ATTRIBUTE_gPLink = 0x0009037b,
397 DRSUAPI_ATTRIBUTE_msDS_Behavior_Version = 0x000905b3,
398 DRSUAPI_ATTRIBUTE_msDS_KeyVersionNumber = 0x000906f6,
399 DRSUAPI_ATTRIBUTE_msDS_HasDomainNCs = 0x0009071c,
400 DRSUAPI_ATTRIBUTE_msDS_hasMasterNCs = 0x0009072c
401 } drsuapi_DsAttributeId;
404 GUID destination_dsa_guid;
405 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
406 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
407 drsuapi_DsReplicaHighWaterMark highwatermark;
408 drsuapi_DsReplicaCursorCtrEx *uptodateness_vector;
409 drsuapi_DsReplicaNeighbourFlags replica_flags;
410 uint32 max_object_count; /* w2k3 uses min(133,max(100,max_object_count)) */
411 uint32 max_ndr_size; /* w2k3 seems to ignore this */
416 drsuapi_DsReplicaOIDMapping_Ctr mapping_ctr;
417 } drsuapi_DsGetNCChangesRequest8;
419 typedef [switch_type(int32)] union {
420 [case(5)] drsuapi_DsGetNCChangesRequest5 req5;
421 [case(8)] drsuapi_DsGetNCChangesRequest8 req8;
422 } drsuapi_DsGetNCChangesRequest;
424 typedef [public] struct {
425 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
426 hyper highest_usn; /* updated after a full replication cycle */
427 NTTIME last_sync_success;
428 } drsuapi_DsReplicaCursor2;
433 [range(0,0x100000)] uint32 count;
435 [size_is(count)] drsuapi_DsReplicaCursor2 cursors[];
436 } drsuapi_DsReplicaCursor2CtrEx;
438 /* Generic DATA_BLOB values */
440 [range(0,10485760),value(ndr_size_DATA_BLOB(0,blob,0))] uint32 __ndr_size;
442 } drsuapi_DsAttributeValue;
445 [range(0,10485760)] uint32 num_values;
446 [size_is(num_values)] drsuapi_DsAttributeValue *values;
447 } drsuapi_DsAttributeValueCtr;
449 /* DN String values */
450 typedef [public,gensize] struct {
451 [value(ndr_size_drsuapi_DsReplicaObjectIdentifier3(r, ndr->flags))] uint32 __ndr_size;
452 [value(ndr_size_dom_sid28(&sid,ndr->flags))] uint32 __ndr_size_sid;
455 [value(strlen_m(dn))] uint32 __ndr_size_dn;
456 [charset(UTF16)] uint16 dn[__ndr_size_dn+1];
457 } drsuapi_DsReplicaObjectIdentifier3;
459 typedef [public,gensize] struct {
460 [value(ndr_size_drsuapi_DsReplicaObjectIdentifier3Binary(r, ndr->flags))] uint32 __ndr_size;
461 [value(ndr_size_dom_sid28(&sid,ndr->flags))] uint32 __ndr_size_sid;
464 [value(strlen_m(dn))] uint32 __ndr_size_dn;
465 [charset(UTF16)] uint16 dn[__ndr_size_dn+1];
466 [value(binary.length + 4)] uint32 __ndr_size_binary;
467 [flag(NDR_REMAINING)] DATA_BLOB binary;
468 } drsuapi_DsReplicaObjectIdentifier3Binary;
470 typedef [public] struct {
471 drsuapi_DsAttributeId attid;
472 drsuapi_DsAttributeValueCtr value_ctr;
473 } drsuapi_DsReplicaAttribute;
476 [range(0,1048576)] uint32 num_attributes;
477 [size_is(num_attributes)] drsuapi_DsReplicaAttribute *attributes;
478 } drsuapi_DsReplicaAttributeCtr;
480 typedef [public] struct {
481 drsuapi_DsReplicaObjectIdentifier *identifier;
483 drsuapi_DsReplicaAttributeCtr attribute_ctr;
484 } drsuapi_DsReplicaObject;
488 NTTIME_1sec originating_change_time;
489 GUID originating_invocation_id;
490 hyper originating_usn;
491 } drsuapi_DsReplicaMetaData;
493 typedef [public] struct {
494 [range(0,1048576)] uint32 count;
495 [size_is(count)] drsuapi_DsReplicaMetaData meta_data[];
496 } drsuapi_DsReplicaMetaDataCtr;
498 typedef [public,noprint] struct {
499 drsuapi_DsReplicaObjectListItemEx *next_object;
500 drsuapi_DsReplicaObject object;
502 GUID *parent_object_guid;
503 drsuapi_DsReplicaMetaDataCtr *meta_data_ctr;
504 } drsuapi_DsReplicaObjectListItemEx;
506 typedef [public,gensize] struct {
507 GUID source_dsa_guid; /* the 'objectGUID' field of the CN=NTDS Settings object */
508 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
509 drsuapi_DsReplicaObjectIdentifier *naming_context;
510 drsuapi_DsReplicaHighWaterMark old_highwatermark;
511 drsuapi_DsReplicaHighWaterMark new_highwatermark;
512 drsuapi_DsReplicaCursorCtrEx *uptodateness_vector;
513 drsuapi_DsReplicaOIDMapping_Ctr mapping_ctr;
514 uint32 total_object_count;
516 /* this +55 is sometimes +56, so I don't know where this comes from... --metze */
517 [value(ndr_size_drsuapi_DsGetNCChangesCtr1(r,ndr->flags)+55)] uint32 __ndr_size;
518 drsuapi_DsReplicaObjectListItemEx *first_object;
520 } drsuapi_DsGetNCChangesCtr1;
523 * if the DRSUAPI_DS_LINKED_ATTRIBUTE_FLAG_ACTIVE flag
524 * isn't there it means the value is deleted
526 typedef [public] bitmap {
527 DRSUAPI_DS_LINKED_ATTRIBUTE_FLAG_ACTIVE = 0x00000001
528 } drsuapi_DsLinkedAttributeFlags;
530 typedef [public] struct {
531 drsuapi_DsReplicaObjectIdentifier *identifier;
532 drsuapi_DsAttributeId attid;
533 drsuapi_DsAttributeValue value;
534 drsuapi_DsLinkedAttributeFlags flags;
535 NTTIME_1sec originating_add_time;
536 drsuapi_DsReplicaMetaData meta_data;
537 } drsuapi_DsReplicaLinkedAttribute;
539 typedef [public,gensize] struct {
540 GUID source_dsa_guid; /* the 'objectGUID' field of the CN=NTDS Settings object */
541 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
542 drsuapi_DsReplicaObjectIdentifier *naming_context;
543 drsuapi_DsReplicaHighWaterMark old_highwatermark;
544 drsuapi_DsReplicaHighWaterMark new_highwatermark;
545 drsuapi_DsReplicaCursor2CtrEx *uptodateness_vector;
546 drsuapi_DsReplicaOIDMapping_Ctr mapping_ctr;
547 uint32 total_object_count;
549 /* this +55 is sometimes +56, so I don't know where this comes from... --metze */
550 [value(ndr_size_drsuapi_DsGetNCChangesCtr6(r,ndr->flags)+55)] uint32 __ndr_size;
551 drsuapi_DsReplicaObjectListItemEx *first_object;
555 [range(0,1048576)] uint32 linked_attributes_count;
556 [size_is(linked_attributes_count)] drsuapi_DsReplicaLinkedAttribute *linked_attributes;
558 } drsuapi_DsGetNCChangesCtr6;
561 uint32 decompressed_length;
562 uint32 compressed_length;
563 [subcontext(4),subcontext_size(compressed_length),
564 compression(NDR_COMPRESSION_MSZIP,compressed_length,decompressed_length)]
565 drsuapi_DsGetNCChangesCtr1 *ctr1;
566 } drsuapi_DsGetNCChangesMSZIPCtr1;
569 uint32 decompressed_length;
570 uint32 compressed_length;
571 [subcontext(4),subcontext_size(compressed_length),
572 compression(NDR_COMPRESSION_MSZIP,compressed_length,decompressed_length)]
573 drsuapi_DsGetNCChangesCtr6 *ctr6;
574 } drsuapi_DsGetNCChangesMSZIPCtr6;
577 uint32 decompressed_length;
578 uint32 compressed_length;
579 [subcontext(4),subcontext_size(compressed_length),
580 compression(NDR_COMPRESSION_XPRESS,compressed_length,decompressed_length),
581 flag(NDR_REMAINING)] DATA_BLOB *decompressed;
582 } drsuapi_DsGetNCChangesXPRESSCtr1;
585 uint32 decompressed_length;
586 uint32 compressed_length;
587 [subcontext(4),subcontext_size(compressed_length),
588 compression(NDR_COMPRESSION_XPRESS,compressed_length,decompressed_length),
589 flag(NDR_REMAINING)] DATA_BLOB *decompressed;
590 } drsuapi_DsGetNCChangesXPRESSCtr6;
592 typedef [enum16bit] enum {
593 DRSUAPI_COMPRESSION_TYPE_MSZIP = 2,
594 DRSUAPI_COMPRESSION_TYPE_XPRESS = 3
595 } drsuapi_DsGetNCChangesCompressionType;
597 typedef [nodiscriminant,flag(NDR_PAHEX)] union {
598 [case(1|(DRSUAPI_COMPRESSION_TYPE_MSZIP<<16))] drsuapi_DsGetNCChangesMSZIPCtr1 mszip1;
599 [case(6|(DRSUAPI_COMPRESSION_TYPE_MSZIP<<16))] drsuapi_DsGetNCChangesMSZIPCtr6 mszip6;
600 [case(1|(DRSUAPI_COMPRESSION_TYPE_XPRESS<<16))] drsuapi_DsGetNCChangesXPRESSCtr1 xpress1;
601 [case(6|(DRSUAPI_COMPRESSION_TYPE_XPRESS<<16))] drsuapi_DsGetNCChangesXPRESSCtr6 xpress6;
602 } drsuapi_DsGetNCChangesCompressedCtr;
606 * this is a bit ugly, as the compression depends on the flags
607 * in the DsBind(), but only w2k uses DsGetNCChangesReq5
608 * and will get DsGetNCChangesCtr2 replies, and w2k only knowns
609 * about MSZIP and level 1 replies
611 [switch_is(1|(DRSUAPI_COMPRESSION_TYPE_MSZIP<<16))] drsuapi_DsGetNCChangesCompressedCtr ctr;
612 } drsuapi_DsGetNCChangesCtr2;
615 [range(0,6)] int32 level;
616 [range(2,3)] drsuapi_DsGetNCChangesCompressionType type;
617 [switch_is(level | (type<<16))] drsuapi_DsGetNCChangesCompressedCtr ctr;
618 } drsuapi_DsGetNCChangesCtr7;
620 typedef [switch_type(int32)] union {
621 [case(1)] drsuapi_DsGetNCChangesCtr1 ctr1;
622 [case(2)] drsuapi_DsGetNCChangesCtr2 ctr2;
623 [case(6)] drsuapi_DsGetNCChangesCtr6 ctr6;
624 [case(7)] drsuapi_DsGetNCChangesCtr7 ctr7;
625 } drsuapi_DsGetNCChangesCtr;
627 WERROR drsuapi_DsGetNCChanges(
628 [in] policy_handle *bind_handle,
630 [in,ref,switch_is(level)] drsuapi_DsGetNCChangesRequest *req,
631 [out,ref] int32 *level_out,
632 [out,ref,switch_is(*level_out)] drsuapi_DsGetNCChangesCtr *ctr
638 DRSUAPI_DS_REPLICA_UPDATE_ASYNCHRONOUS_OPERATION = 0x00000001,
639 DRSUAPI_DS_REPLICA_UPDATE_WRITEABLE = 0x00000002,
640 DRSUAPI_DS_REPLICA_UPDATE_ADD_REFERENCE = 0x00000004,
641 DRSUAPI_DS_REPLICA_UPDATE_DELETE_REFERENCE = 0x00000008,
642 DRSUAPI_DS_REPLICA_UPDATE_0x00000010 = 0x00000010
643 } drsuapi_DsReplicaUpdateRefsOptions;
646 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
647 [ref,charset(DOS),string] uint8 *dest_dsa_dns_name;
649 drsuapi_DsReplicaUpdateRefsOptions options;
650 } drsuapi_DsReplicaUpdateRefsRequest1;
652 typedef [switch_type(int32)] union {
653 [case(1)] drsuapi_DsReplicaUpdateRefsRequest1 req1;
654 } drsuapi_DsReplicaUpdateRefsRequest;
656 WERROR drsuapi_DsReplicaUpdateRefs(
657 [in] policy_handle *bind_handle,
659 [in,switch_is(level)] drsuapi_DsReplicaUpdateRefsRequest req
665 DRSUAPI_DS_REPLICA_ADD_ASYNCHRONOUS_OPERATION = 0x00000001,
666 DRSUAPI_DS_REPLICA_ADD_WRITEABLE = 0x00000002
668 } drsuapi_DsReplicaAddOptions;
670 WERROR DRSUAPI_REPLICA_ADD();
675 DRSUAPI_DS_REPLICA_DELETE_ASYNCHRONOUS_OPERATION = 0x00000001,
676 DRSUAPI_DS_REPLICA_DELETE_WRITEABLE = 0x00000002
678 } drsuapi_DsReplicaDeleteOptions;
680 WERROR DRSUAPI_REPLICA_DEL();
685 DRSUAPI_DS_REPLICA_MODIFY_ASYNCHRONOUS_OPERATION = 0x00000001,
686 DRSUAPI_DS_REPLICA_MODIFY_WRITEABLE = 0x00000002
687 } drsuapi_DsReplicaModifyOptions;
689 WERROR DRSUAPI_REPLICA_MODIFY();
693 WERROR DRSUAPI_VERIFY_NAMES();
698 /* how are type 4 and 7 different from 2 and 3 ? */
699 typedef [v1_enum] enum {
700 DRSUAPI_DS_MEMBERSHIP_TYPE_UNIVERSAL_AND_DOMAIN_GROUPS = 1,
701 DRSUAPI_DS_MEMBERSHIP_TYPE_DOMAIN_LOCAL_GROUPS = 2,
702 DRSUAPI_DS_MEMBERSHIP_TYPE_DOMAIN_GROUPS = 3,
703 DRSUAPI_DS_MEMBERSHIP_TYPE_DOMAIN_LOCAL_GROUPS2 = 4,
704 DRSUAPI_DS_MEMBERSHIP_TYPE_UNIVERSAL_GROUPS = 5,
705 DRSUAPI_DS_MEMBERSHIP_TYPE_GROUPMEMBERS = 6,
706 DRSUAPI_DS_MEMBERSHIP_TYPE_DOMAIN_GROUPS2 = 7
707 } drsuapi_DsMembershipType;
711 [range(0,10000)] uint32 num_memberships;
712 [range(0,10000)] uint32 num_sids;
713 [size_is(num_memberships)] drsuapi_DsReplicaObjectIdentifier **info_array;
714 [size_is(num_memberships)] samr_GroupAttrs *group_attrs;
715 [size_is(num_sids)] dom_sid28 **sids;
716 } drsuapi_DsGetMembershipsCtr1;
718 typedef [switch_type(int32)] union {
719 [case(1)] drsuapi_DsGetMembershipsCtr1 ctr1;
720 } drsuapi_DsGetMembershipsCtr;
722 const int DRSUAPI_DS_MEMBERSHIP_FLAG_GROUP_ATTR = 0x1;
725 [range(1,10000)] uint32 count;
726 [size_is(count)] drsuapi_DsReplicaObjectIdentifier **info_array;
728 drsuapi_DsMembershipType type;
729 drsuapi_DsReplicaObjectIdentifier *domain;
730 } drsuapi_DsGetMembershipsRequest1;
732 typedef [switch_type(int32)] union {
733 [case(1)] drsuapi_DsGetMembershipsRequest1 req1;
734 } drsuapi_DsGetMembershipsRequest;
736 WERROR drsuapi_DsGetMemberships(
737 [in] policy_handle *bind_handle,
739 [in,ref] [switch_is(level)] drsuapi_DsGetMembershipsRequest *req,
740 [out,ref] int32 *level_out,
741 [out,ref] [switch_is(*level_out)] drsuapi_DsGetMembershipsCtr *ctr
746 WERROR DRSUAPI_INTER_DOMAIN_MOVE();
753 [range(0,0x00A00000)] uint32 length;
754 [size_is(length)] uint8 *data;
755 } drsuapi_DsGetNT4ChangeLogRequest1;
757 typedef [switch_type(uint32)] union {
758 [case(1)] drsuapi_DsGetNT4ChangeLogRequest1 req1;
759 } drsuapi_DsGetNT4ChangeLogRequest;
762 [range(0,0x00A00000)] uint32 length1;
763 [range(0,0x00A00000)] uint32 length2;
771 [size_is(length1)] uint8 *data1;
772 [size_is(length2)] uint8 *data2;
773 } drsuapi_DsGetNT4ChangeLogInfo1;
775 typedef [switch_type(uint32)] union {
776 [case(1)] drsuapi_DsGetNT4ChangeLogInfo1 info1;
777 } drsuapi_DsGetNT4ChangeLogInfo;
779 WERROR drsuapi_DsGetNT4ChangeLog(
780 [in] policy_handle *bind_handle,
782 [in,ref] [switch_is(level)] drsuapi_DsGetNT4ChangeLogRequest *req,
783 [out,ref] uint32 *level_out,
784 [out,ref] [switch_is(*level_out)] drsuapi_DsGetNT4ChangeLogInfo *info
789 typedef [v1_enum] enum {
790 DRSUAPI_DS_NAME_STATUS_OK = 0,
791 DRSUAPI_DS_NAME_STATUS_RESOLVE_ERROR = 1,
792 DRSUAPI_DS_NAME_STATUS_NOT_FOUND = 2,
793 DRSUAPI_DS_NAME_STATUS_NOT_UNIQUE = 3,
794 DRSUAPI_DS_NAME_STATUS_NO_MAPPING = 4,
795 DRSUAPI_DS_NAME_STATUS_DOMAIN_ONLY = 5,
796 DRSUAPI_DS_NAME_STATUS_NO_SYNTACTICAL_MAPPING = 6,
797 DRSUAPI_DS_NAME_STATUS_TRUST_REFERRAL = 7
798 } drsuapi_DsNameStatus;
800 typedef [v1_enum] enum {
801 DRSUAPI_DS_NAME_FLAG_NO_FLAGS = 0x0,
802 DRSUAPI_DS_NAME_FLAG_SYNTACTICAL_ONLY = 0x1,
803 DRSUAPI_DS_NAME_FLAG_EVAL_AT_DC = 0x2,
804 DRSUAPI_DS_NAME_FLAG_GCVERIFY = 0x4,
805 DRSUAPI_DS_NAME_FLAG_TRUST_REFERRAL = 0x8
806 } drsuapi_DsNameFlags;
808 typedef [v1_enum] enum {
809 DRSUAPI_DS_NAME_FORMAT_UKNOWN = 0,
810 DRSUAPI_DS_NAME_FORMAT_FQDN_1779 = 1,
811 DRSUAPI_DS_NAME_FORMAT_NT4_ACCOUNT = 2,
812 DRSUAPI_DS_NAME_FORMAT_DISPLAY = 3,
813 DRSUAPI_DS_NAME_FORMAT_GUID = 6,
814 DRSUAPI_DS_NAME_FORMAT_CANONICAL = 7,
815 DRSUAPI_DS_NAME_FORMAT_USER_PRINCIPAL = 8,
816 DRSUAPI_DS_NAME_FORMAT_CANONICAL_EX = 9,
817 DRSUAPI_DS_NAME_FORMAT_SERVICE_PRINCIPAL = 10,
818 DRSUAPI_DS_NAME_FORMAT_SID_OR_SID_HISTORY = 11,
819 DRSUAPI_DS_NAME_FORMAT_DNS_DOMAIN = 12
820 } drsuapi_DsNameFormat;
823 [string,charset(UTF16)] uint16 *str;
824 } drsuapi_DsNameString;
827 uint32 codepage; /* 0x000004e4 - 1252 is german codepage*/
828 uint32 language; /* 0x00000407 - german language ID*/
829 drsuapi_DsNameFlags format_flags;
830 drsuapi_DsNameFormat format_offered;
831 drsuapi_DsNameFormat format_desired;
832 [range(1,10000)] uint32 count;
833 [size_is(count)] drsuapi_DsNameString *names;
834 } drsuapi_DsNameRequest1;
836 typedef [switch_type(int32)] union {
837 [case(1)] drsuapi_DsNameRequest1 req1;
838 } drsuapi_DsNameRequest;
841 drsuapi_DsNameStatus status;
842 [charset(UTF16),string] uint16 *dns_domain_name;
843 [charset(UTF16),string] uint16 *result_name;
844 } drsuapi_DsNameInfo1;
848 [size_is(count)] drsuapi_DsNameInfo1 *array;
849 } drsuapi_DsNameCtr1;
851 typedef [switch_type(int32)] union {
852 [case(1)] drsuapi_DsNameCtr1 *ctr1;
855 WERROR drsuapi_DsCrackNames(
856 [in] policy_handle *bind_handle,
858 [in,ref,switch_is(level)] drsuapi_DsNameRequest *req,
859 [out,ref] int32 *level_out,
860 [out,ref,switch_is(*level_out)] drsuapi_DsNameCtr *ctr
865 typedef [v1_enum] enum {
866 DRSUAPI_DS_SPN_OPERATION_ADD = 0,
867 DRSUAPI_DS_SPN_OPERATION_REPLACE= 1,
868 DRSUAPI_DS_SPN_OPERATION_DELETE = 2
869 } drsuapi_DsSpnOperation;
872 drsuapi_DsSpnOperation operation;
874 [charset(UTF16),string] uint16 *object_dn;
875 [range(0,10000)] uint32 count;
876 [size_is(count)] drsuapi_DsNameString *spn_names;
877 } drsuapi_DsWriteAccountSpnRequest1;
879 typedef [switch_type(int32)] union {
880 [case(1)] drsuapi_DsWriteAccountSpnRequest1 req1;
881 } drsuapi_DsWriteAccountSpnRequest;
885 } drsuapi_DsWriteAccountSpnResult1;
887 typedef [switch_type(int32)] union {
888 [case(1)] drsuapi_DsWriteAccountSpnResult1 res1;
889 } drsuapi_DsWriteAccountSpnResult;
891 WERROR drsuapi_DsWriteAccountSpn(
892 [in] policy_handle *bind_handle,
894 [in,ref,switch_is(level)] drsuapi_DsWriteAccountSpnRequest *req,
895 [out,ref] int32 *level_out,
896 [out,ref,switch_is(*level_out)] drsuapi_DsWriteAccountSpnResult *res
902 [charset(UTF16),string] uint16 *server_dn;
903 [charset(UTF16),string] uint16 *domain_dn;
904 uint32 unknown; /* 0x000000001 */
905 } drsuapi_DsRemoveDSServerRequest1;
907 typedef [switch_type(int32)] union {
908 [case(1)] drsuapi_DsRemoveDSServerRequest1 req1;
909 } drsuapi_DsRemoveDSServerRequest;
913 } drsuapi_DsRemoveDSServerResult1;
915 typedef [switch_type(int32)] union {
916 [case(1)] drsuapi_DsRemoveDSServerResult1 res1;
917 } drsuapi_DsRemoveDSServerResult;
919 WERROR drsuapi_DsRemoveDSServer(
920 [in] policy_handle *bind_handle,
922 [in,ref,switch_is(level)] drsuapi_DsRemoveDSServerRequest *req,
923 [out,ref] int32 *level_out,
924 [out,ref,switch_is(*level_out)] drsuapi_DsRemoveDSServerResult *res
929 WERROR DRSUAPI_REMOVE_DS_DOMAIN();
934 [charset(UTF16),string] uint16 *domain_name; /* netbios or dns */
935 int32 level; /* specifies the switch level for the request */
936 } drsuapi_DsGetDCInfoRequest1;
938 typedef [switch_type(int32)] union {
939 [case(1)] drsuapi_DsGetDCInfoRequest1 req1;
940 } drsuapi_DsGetDCInfoRequest;
943 [charset(UTF16),string] uint16 *netbios_name;
944 [charset(UTF16),string] uint16 *dns_name;
945 [charset(UTF16),string] uint16 *site_name;
946 [charset(UTF16),string] uint16 *computer_dn;
947 [charset(UTF16),string] uint16 *server_dn;
950 } drsuapi_DsGetDCInfo1;
953 [range(0,10000)] uint32 count;
954 [size_is(count)] drsuapi_DsGetDCInfo1 *array;
955 } drsuapi_DsGetDCInfoCtr1;
958 [charset(UTF16),string] uint16 *netbios_name;
959 [charset(UTF16),string] uint16 *dns_name;
960 [charset(UTF16),string] uint16 *site_name;
961 [charset(UTF16),string] uint16 *site_dn;
962 [charset(UTF16),string] uint16 *computer_dn;
963 [charset(UTF16),string] uint16 *server_dn;
964 [charset(UTF16),string] uint16 *ntds_dn;
972 } drsuapi_DsGetDCInfo2;
975 [range(0,10000)] uint32 count;
976 [size_is(count)] drsuapi_DsGetDCInfo2 *array;
977 } drsuapi_DsGetDCInfoCtr2;
980 [charset(UTF16),string] uint16 *netbios_name;
981 [charset(UTF16),string] uint16 *dns_name;
982 [charset(UTF16),string] uint16 *site_name;
983 [charset(UTF16),string] uint16 *site_dn;
984 [charset(UTF16),string] uint16 *computer_dn;
985 [charset(UTF16),string] uint16 *server_dn;
986 [charset(UTF16),string] uint16 *ntds_dn;
995 } drsuapi_DsGetDCInfo3;
998 [range(0,10000)] uint32 count;
999 [size_is(count)] drsuapi_DsGetDCInfo3 *array;
1000 } drsuapi_DsGetDCInfoCtr3;
1003 * this represents an active connection to the
1004 * Directory System Agent (DSA)
1005 * this can be via LDAP or DRSUAPI
1008 [flag(NDR_BIG_ENDIAN)] ipv4address client_ip_address;
1010 uint32 connection_time; /* in seconds */
1015 * client_account can be the following:
1016 * "W2K3\Administrator"
1017 * "Administrator@W2K3"
1018 * "cn=Administrator,cn=Users,DC=w2k3,DC=vmnet1,DC=vm,DC=base"
1022 [charset(UTF16),string] uint16 *client_account;
1023 } drsuapi_DsGetDCConnection01;
1026 [range(0,10000)] uint32 count;
1027 [size_is(count)] drsuapi_DsGetDCConnection01 *array;
1028 } drsuapi_DsGetDCConnectionCtr01;
1030 typedef [v1_enum] enum {
1031 DRSUAPI_DC_INFO_CTR_1 = 1,
1032 DRSUAPI_DC_INFO_CTR_2 = 2,
1033 DRSUAPI_DC_INFO_CTR_3 = 3,
1034 DRSUAPI_DC_CONNECTION_CTR_01 = -1
1035 } drsuapi_DsGetDCInfoCtrLevels;
1037 typedef [switch_type(int32)] union {
1038 [case(DRSUAPI_DC_INFO_CTR_1)] drsuapi_DsGetDCInfoCtr1 ctr1;
1039 [case(DRSUAPI_DC_INFO_CTR_2)] drsuapi_DsGetDCInfoCtr2 ctr2;
1040 [case(DRSUAPI_DC_INFO_CTR_3)] drsuapi_DsGetDCInfoCtr3 ctr3;
1041 [case(DRSUAPI_DC_CONNECTION_CTR_01)] drsuapi_DsGetDCConnectionCtr01 ctr01;
1042 } drsuapi_DsGetDCInfoCtr;
1044 WERROR drsuapi_DsGetDomainControllerInfo(
1045 [in] policy_handle *bind_handle,
1047 [in,ref,switch_is(level)] drsuapi_DsGetDCInfoRequest *req,
1048 [out,ref] int32 *level_out,
1049 [out,ref,switch_is(*level_out)] drsuapi_DsGetDCInfoCtr *ctr
1054 typedef [public,noprint] struct {
1055 drsuapi_DsReplicaObjectListItem *next_object;
1056 drsuapi_DsReplicaObject object;
1057 } drsuapi_DsReplicaObjectListItem;
1060 * The DsAddEntry() call which creates a nTDSDSA object,
1061 * also adds a servicePrincipalName in the following form
1062 * to the computer account of the new domain controller
1063 * referenced by the "serverReferenece" attribute.
1065 * E3514235-4B06-11D1-AB04-00C04FC2DCD2/<new-ntdsdsa-object-guid-as-string>/<domain-dns-name>
1067 * also note that the "serverReference" isn't added to the new object!
1069 const char *DRSUAPI_NTDSDSA_KRB5_SERVICE_GUID = "E3514235-4B06-11D1-AB04-00C04FC2DCD2";
1072 * please note the the current idl
1073 * for DsAddEntry does only parse
1074 * what I saw between 2 w2k3 boxes
1075 * in my dssync experiments I got some other replies
1076 * so all I want to say is that this is very incomplete yet...
1080 drsuapi_DsReplicaObjectListItem first_object;
1081 } drsuapi_DsAddEntryRequest2;
1083 typedef [switch_type(int32)] union {
1084 [case(2)] drsuapi_DsAddEntryRequest2 req2;
1085 } drsuapi_DsAddEntryRequest;
1092 } drsuapi_DsAddEntryErrorInfoX;
1095 [range(0,10485760)] uint32 size;
1096 [size_is(size)] uint8 *data;
1097 } drsuapi_DsAddEntryExtraErrorBuffer;
1100 drsuapi_DsAddEntryErrorInfoX error;
1101 drsuapi_DsAttributeId attid;
1103 drsuapi_DsAddEntryExtraErrorBuffer buffer;
1104 } drsuapi_DsAddEntryExtraError1;
1106 typedef /*[noprint]*/ struct {
1107 drsuapi_DsAddEntryErrorListItem1 *next;
1108 drsuapi_DsAddEntryExtraError1 error;
1109 } drsuapi_DsAddEntryErrorListItem1;
1112 drsuapi_DsReplicaObjectIdentifier *id;
1114 drsuapi_DsAddEntryErrorListItem1 first;
1115 } drsuapi_DsAddEntryErrorInfo1;
1117 typedef [switch_type(uint32)] union {
1118 [case(1)] drsuapi_DsAddEntryErrorInfo1 error1;
1119 /* [case(2)] drsuapi_DsAddEntryErrorInfo2 error2;
1120 [case(3)] drsuapi_DsAddEntryErrorInfo3 error3;
1121 */ [case(4)] drsuapi_DsAddEntryErrorInfoX errorX;
1122 [case(5)] drsuapi_DsAddEntryErrorInfoX errorX;
1123 [case(6)] drsuapi_DsAddEntryErrorInfoX errorX;
1124 [case(7)] drsuapi_DsAddEntryErrorInfoX errorX;
1125 } drsuapi_DsAddEntryErrorInfo;
1130 [switch_is(level)] drsuapi_DsAddEntryErrorInfo *info;
1131 } drsuapi_DsAddEntryError1;
1133 typedef [switch_type(uint32)] union {
1134 [case(1)] drsuapi_DsAddEntryError1 info1;
1135 } drsuapi_DsAddEntryError;
1140 } drsuapi_DsReplicaObjectIdentifier2;
1143 drsuapi_DsReplicaObjectIdentifier *id;
1145 drsuapi_DsAddEntryErrorInfoX error;
1146 [range(0,10000)] uint32 count;
1147 [size_is(count)] drsuapi_DsReplicaObjectIdentifier2 *objects;
1148 } drsuapi_DsAddEntryCtr2;
1151 drsuapi_DsReplicaObjectIdentifier *id;
1153 [switch_is(level)] drsuapi_DsAddEntryError *error;
1154 [range(0,10000)] uint32 count;
1155 [size_is(count)] drsuapi_DsReplicaObjectIdentifier2 *objects;
1156 } drsuapi_DsAddEntryCtr3;
1158 typedef [switch_type(int32)] union {
1159 [case(2)] drsuapi_DsAddEntryCtr2 ctr2;
1160 [case(3)] drsuapi_DsAddEntryCtr3 ctr3;
1161 } drsuapi_DsAddEntryCtr;
1163 [public] WERROR drsuapi_DsAddEntry(
1164 [in] policy_handle *bind_handle,
1166 [in,ref,switch_is(level)] drsuapi_DsAddEntryRequest *req,
1167 [out,ref] int32 *level_out,
1168 [out,ref,switch_is(*level_out)] drsuapi_DsAddEntryCtr *ctr
1173 WERROR DRSUAPI_EXECUTE_KCC();
1177 typedef [v1_enum] enum {
1178 DRSUAPI_DS_REPLICA_GET_INFO = 1,
1179 DRSUAPI_DS_REPLICA_GET_INFO2 = 2
1180 } drsuapi_DsReplicaGetInfoLevel;
1182 typedef [v1_enum] enum {
1183 DRSUAPI_DS_REPLICA_INFO_NEIGHBORS = 0,
1184 DRSUAPI_DS_REPLICA_INFO_CURSORS = 1,
1185 DRSUAPI_DS_REPLICA_INFO_OBJ_METADATA = 2,
1186 DRSUAPI_DS_REPLICA_INFO_KCC_DSA_CONNECT_FAILURES = 3,
1187 DRSUAPI_DS_REPLICA_INFO_KCC_DSA_LINK_FAILURES = 4,
1188 DRSUAPI_DS_REPLICA_INFO_PENDING_OPS = 5,
1189 DRSUAPI_DS_REPLICA_INFO_ATTRIBUTE_VALUE_METADATA = 6,
1190 DRSUAPI_DS_REPLICA_INFO_CURSORS2 = 7,
1191 DRSUAPI_DS_REPLICA_INFO_CURSORS3 = 8,
1192 DRSUAPI_DS_REPLICA_INFO_OBJ_METADATA2 = 9,
1193 DRSUAPI_DS_REPLICA_INFO_ATTRIBUTE_VALUE_METADATA2 = 10,
1194 DRSUAPI_DS_REPLICA_INFO_NEIGHBORS02 = -2,
1195 DRSUAPI_DS_REPLICA_INFO_CONNECTIONS04 = -4,
1196 DRSUAPI_DS_REPLICA_INFO_CURSORS05 = -5,
1197 DRSUAPI_DS_REPLICA_INFO_06 = -6
1198 } drsuapi_DsReplicaInfoType;
1201 drsuapi_DsReplicaInfoType info_type;
1202 [charset(UTF16),string] uint16 *object_dn;
1204 } drsuapi_DsReplicaGetInfoRequest1;
1207 drsuapi_DsReplicaInfoType info_type;
1208 [charset(UTF16),string] uint16 *object_dn;
1211 [charset(UTF16),string] uint16 *string1;
1212 [charset(UTF16),string] uint16 *string2;
1214 } drsuapi_DsReplicaGetInfoRequest2;
1216 typedef [switch_type(drsuapi_DsReplicaGetInfoLevel)] union {
1217 [case(DRSUAPI_DS_REPLICA_GET_INFO)] drsuapi_DsReplicaGetInfoRequest1 req1;
1218 [case(DRSUAPI_DS_REPLICA_GET_INFO2)] drsuapi_DsReplicaGetInfoRequest2 req2;
1219 } drsuapi_DsReplicaGetInfoRequest;
1222 [charset(UTF16),string] uint16 *naming_context_dn;
1223 [charset(UTF16),string] uint16 *source_dsa_obj_dn;
1224 [charset(UTF16),string] uint16 *source_dsa_address;
1225 [charset(UTF16),string] uint16 *transport_obj_dn;
1226 drsuapi_DsReplicaNeighbourFlags replica_flags;
1228 GUID naming_context_obj_guid;
1229 GUID source_dsa_obj_guid;
1230 GUID source_dsa_invocation_id;
1231 GUID transport_obj_guid;
1232 hyper tmp_highest_usn;
1234 NTTIME last_success;
1235 NTTIME last_attempt;
1236 WERROR result_last_attempt;
1237 uint32 consecutive_sync_failures;
1238 } drsuapi_DsReplicaNeighbour;
1243 [size_is(count)] drsuapi_DsReplicaNeighbour array[];
1244 } drsuapi_DsReplicaNeighbourCtr;
1249 [size_is(count)] drsuapi_DsReplicaCursor array[];
1250 } drsuapi_DsReplicaCursorCtr;
1253 [charset(UTF16),string] uint16 *attribute_name;
1255 NTTIME originating_change_time;
1256 GUID originating_invocation_id;
1257 hyper originating_usn;
1259 } drsuapi_DsReplicaObjMetaData;
1264 [size_is(count)] drsuapi_DsReplicaObjMetaData array[];
1265 } drsuapi_DsReplicaObjMetaDataCtr;
1268 [charset(UTF16),string] uint16 *dsa_obj_dn;
1270 NTTIME first_failure;
1271 uint32 num_failures;
1273 } drsuapi_DsReplicaKccDsaFailure;
1278 [size_is(count)] drsuapi_DsReplicaKccDsaFailure array[];
1279 } drsuapi_DsReplicaKccDsaFailuresCtr;
1282 DRSUAPI_DS_REPLICA_OP_TYPE_SYNC = 0,
1283 DRSUAPI_DS_REPLICA_OP_TYPE_ADD = 1,
1284 DRSUAPI_DS_REPLICA_OP_TYPE_DELETE = 2,
1285 DRSUAPI_DS_REPLICA_OP_TYPE_MODIFY = 3,
1286 DRSUAPI_DS_REPLICA_OP_TYPE_UPDATE_REFS = 4
1287 } drsuapi_DsReplicaOpType;
1289 typedef [switch_type(drsuapi_DsReplicaOpType)] union {
1290 [case(DRSUAPI_DS_REPLICA_OP_TYPE_SYNC)] drsuapi_DsReplicaSyncOptions sync;
1291 [case(DRSUAPI_DS_REPLICA_OP_TYPE_ADD)] drsuapi_DsReplicaAddOptions add;
1292 [case(DRSUAPI_DS_REPLICA_OP_TYPE_DELETE)] drsuapi_DsReplicaDeleteOptions op_delete;
1293 [case(DRSUAPI_DS_REPLICA_OP_TYPE_MODIFY)] drsuapi_DsReplicaModifyOptions modify;
1294 [case(DRSUAPI_DS_REPLICA_OP_TYPE_UPDATE_REFS)] drsuapi_DsReplicaUpdateRefsOptions update_refs;
1295 [default] uint32 unknown;
1296 } drsuapi_DsRplicaOpOptions;
1299 NTTIME operation_start;
1300 uint32 serial_num; /* unique till reboot */
1302 drsuapi_DsReplicaOpType operation_type;
1303 [switch_is(operation_type)] drsuapi_DsRplicaOpOptions options;
1304 [charset(UTF16),string] uint16 *nc_dn;
1305 [charset(UTF16),string] uint16 *remote_dsa_obj_dn;
1306 [charset(UTF16),string] uint16 *remote_dsa_address;
1308 GUID remote_dsa_obj_guid;
1309 } drsuapi_DsReplicaOp;
1314 [size_is(count)] drsuapi_DsReplicaOp array[];
1315 } drsuapi_DsReplicaOpCtr;
1318 [charset(UTF16),string] uint16 *attribute_name;
1319 [charset(UTF16),string] uint16 *object_dn;
1320 [value(ndr_size_DATA_BLOB(0,binary,0))] uint32 __ndr_size_binary;
1325 NTTIME originating_change_time;
1326 GUID originating_invocation_id;
1327 hyper originating_usn;
1329 } drsuapi_DsReplicaAttrValMetaData;
1333 int32 enumeration_context;
1334 [size_is(count)] drsuapi_DsReplicaAttrValMetaData array[];
1335 } drsuapi_DsReplicaAttrValMetaDataCtr;
1339 int32 enumeration_context;
1340 [size_is(count)] drsuapi_DsReplicaCursor2 array[];
1341 } drsuapi_DsReplicaCursor2Ctr;
1344 GUID source_dsa_invocation_id;
1346 NTTIME last_sync_success;
1347 [charset(UTF16),string] uint16 *source_dsa_obj_dn;
1348 } drsuapi_DsReplicaCursor3;
1352 int32 enumeration_context;
1353 [size_is(count)] drsuapi_DsReplicaCursor3 array[];
1354 } drsuapi_DsReplicaCursor3Ctr;
1357 [charset(UTF16),string] uint16 *attribute_name;
1359 NTTIME originating_change_time;
1360 GUID originating_invocation_id;
1361 hyper originating_usn;
1363 [charset(UTF16),string] uint16 *originating_dsa_dn;
1364 } drsuapi_DsReplicaObjMetaData2;
1368 int32 enumeration_context;
1369 [size_is(count)] drsuapi_DsReplicaObjMetaData2 array[];
1370 } drsuapi_DsReplicaObjMetaData2Ctr;
1373 [charset(UTF16),string] uint16 *attribute_name;
1374 [charset(UTF16),string] uint16 *object_dn;
1375 [value(ndr_size_DATA_BLOB(0,binary,0))] uint32 __ndr_size_binary;
1380 NTTIME originating_change_time;
1381 GUID originating_invocation_id;
1382 hyper originating_usn;
1384 [charset(UTF16),string] uint16 *originating_dsa_dn;
1385 } drsuapi_DsReplicaAttrValMetaData2;
1389 int32 enumeration_context;
1390 [size_is(count)] drsuapi_DsReplicaAttrValMetaData2 array[];
1391 } drsuapi_DsReplicaAttrValMetaData2Ctr;
1394 hyper u1; /* session number? */
1398 NTTIME_1sec bind_time;
1399 [flag(NDR_BIG_ENDIAN)] ipv4address client_ip_address;
1400 uint32 u5; /* this is the same value the client used as u1 in the DsBindInfoX struct */
1401 } drsuapi_DsReplicaConnection04;
1404 [range(0,10000)] uint32 count;
1406 [size_is(count)] drsuapi_DsReplicaConnection04 array[];
1407 } drsuapi_DsReplicaConnection04Ctr;
1410 [charset(UTF16),string] uint16 *str1;
1418 } drsuapi_DsReplica06;
1421 [range(0,256)] uint32 count;
1423 [size_is(count)] drsuapi_DsReplica06 array[];
1424 } drsuapi_DsReplica06Ctr;
1426 typedef [switch_type(drsuapi_DsReplicaInfoType)] union {
1427 [case(DRSUAPI_DS_REPLICA_INFO_NEIGHBORS)] drsuapi_DsReplicaNeighbourCtr *neighbours;
1428 [case(DRSUAPI_DS_REPLICA_INFO_CURSORS)] drsuapi_DsReplicaCursorCtr *cursors;
1429 [case(DRSUAPI_DS_REPLICA_INFO_OBJ_METADATA)] drsuapi_DsReplicaObjMetaDataCtr *objmetadata;
1430 [case(DRSUAPI_DS_REPLICA_INFO_KCC_DSA_CONNECT_FAILURES)] drsuapi_DsReplicaKccDsaFailuresCtr *connectfailures;
1431 [case(DRSUAPI_DS_REPLICA_INFO_KCC_DSA_LINK_FAILURES)] drsuapi_DsReplicaKccDsaFailuresCtr *linkfailures;
1432 [case(DRSUAPI_DS_REPLICA_INFO_PENDING_OPS)] drsuapi_DsReplicaOpCtr *pendingops;
1433 [case(DRSUAPI_DS_REPLICA_INFO_ATTRIBUTE_VALUE_METADATA)] drsuapi_DsReplicaAttrValMetaDataCtr *attrvalmetadata;
1434 [case(DRSUAPI_DS_REPLICA_INFO_CURSORS2)] drsuapi_DsReplicaCursor2Ctr *cursors2;
1435 [case(DRSUAPI_DS_REPLICA_INFO_CURSORS3)] drsuapi_DsReplicaCursor3Ctr *cursors3;
1436 [case(DRSUAPI_DS_REPLICA_INFO_OBJ_METADATA2)] drsuapi_DsReplicaObjMetaData2Ctr *objmetadata2;
1437 [case(DRSUAPI_DS_REPLICA_INFO_ATTRIBUTE_VALUE_METADATA2)] drsuapi_DsReplicaAttrValMetaData2Ctr *attrvalmetadata2;
1438 [case(DRSUAPI_DS_REPLICA_INFO_NEIGHBORS02)] drsuapi_DsReplicaNeighbourCtr *neighbours02;
1439 [case(DRSUAPI_DS_REPLICA_INFO_CONNECTIONS04)] drsuapi_DsReplicaConnection04Ctr *connections04;
1440 [case(DRSUAPI_DS_REPLICA_INFO_CURSORS05)] drsuapi_DsReplicaCursorCtrEx *cursors05;
1441 [case(DRSUAPI_DS_REPLICA_INFO_06)] drsuapi_DsReplica06Ctr *i06;
1442 } drsuapi_DsReplicaInfo;
1444 WERROR drsuapi_DsReplicaGetInfo(
1445 [in] policy_handle *bind_handle,
1446 [in] drsuapi_DsReplicaGetInfoLevel level,
1447 [in,ref,switch_is(level)] drsuapi_DsReplicaGetInfoRequest *req,
1448 [out,ref] drsuapi_DsReplicaInfoType *info_type,
1449 [out,ref,switch_is(*info_type)] drsuapi_DsReplicaInfo *info
1454 WERROR DRSUAPI_ADD_SID_HISTORY();
1460 [range(0,10000)] uint32 num_entries;
1461 [size_is(num_entries)] drsuapi_DsGetMembershipsCtr1 **ctrl_array;
1462 } drsuapi_DsGetMemberships2Ctr1;
1464 typedef [switch_type(int32)] union {
1465 [case(1)] drsuapi_DsGetMembershipsCtr1 ctr1;
1466 } drsuapi_DsGetMemberships2Ctr;
1469 [range(1,10000)] uint32 num_req;
1470 [size_is(num_req)] drsuapi_DsGetMembershipsRequest1 **req_array;
1471 } drsuapi_DsGetMemberships2Request1;
1473 typedef [switch_type(int32)] union {
1474 [case(1)] drsuapi_DsGetMemberships2Request1 req1;
1475 } drsuapi_DsGetMemberships2Request;
1477 WERROR drsuapi_DsGetMemberships2(
1478 [in] policy_handle *bind_handle,
1480 [in,ref] [switch_is(level)] drsuapi_DsGetMemberships2Request *req,
1481 [out,ref] int32 *level_out,
1482 [out,ref] [switch_is(*level_out)] drsuapi_DsGetMemberships2Ctr *ctr
1488 WERROR DRSUAPI_REPLICA_VERIFY_OBJECTS();
1492 WERROR DRSUAPI_GET_OBJECT_EXISTENCE();
1499 } drsuapi_DsSiteCostInfo;
1502 [range(0,10000)] uint32 num_info;
1503 [size_is(num_info)] drsuapi_DsSiteCostInfo *info;
1505 } drsuapi_QuerySitesByCostCtr1;
1507 typedef [switch_type(int32)] union {
1508 [case(1)] drsuapi_QuerySitesByCostCtr1 ctr1;
1509 } drsuapi_QuerySitesByCostCtr;
1512 [charset(UTF16),string] uint16 *site_from;
1513 [range(1,10000)] uint32 num_req;
1514 [size_is(num_req)] [charset(UTF16),string] uint16 **site_to;
1516 } drsuapi_QuerySitesByCostRequest1;
1518 typedef [switch_type(int32)] union {
1519 [case(1)] drsuapi_QuerySitesByCostRequest1 req1;
1520 } drsuapi_QuerySitesByCostRequest;
1522 WERROR drsuapi_QuerySitesByCost(
1523 [in] policy_handle *bind_handle,
1525 [in,ref] [switch_is(level)] drsuapi_QuerySitesByCostRequest *req,
1526 [out,ref] int32 *level_out,
1527 [out,ref] [switch_is(*level_out)] drsuapi_QuerySitesByCostCtr *ctr