2.1.1 Server

The server RPC interface is identified by UUID 82273FDC-E32A-18C3-3F78-827929DC23EA version 0.0, using the RPC well-known endpoint \PIPE\eventlog. The server MUST specify RPC over named pipes (that is, ncacn_np) as the RPC protocol sequence to the RPC implementation, as specified in [MS-RPCE]. The server MUST specify the Simple and Protected GSS-API Negotiation Mechanism (SPNEGO) (0x9) or NT LAN Manager (NTLM) (0xA), or both, as the RPC Authentication Service (AS) (as specified in [MS-RPCE]). See [MS-RPCE] section 3.3.1.5.2.2 and [C706] section 13.

The server MAY require the client connection to specify an authentication level of at least packet-level authentication (0x4), as specified in section 2.2.1.1.8 of [MS-RPCE]. The server SHOULD require the connection to use the packet-privacy authentication level (0x6).<5>