2.2.7.29 LSAPR_TRUSTED_DOMAIN_AUTH_INFORMATION_INTERNAL_AES

Article
01/09/2024

The LSAPR_TRUSTED_DOMAIN_AUTH_INFORMATION_INTERNAL_AES structure communicates authentication material. The cleartext password data is in the form of a LSAPR_TRUSTED_DOMAIN_AUTH_BLOB (section 2.2.7.16). The following structure corresponds to the TrustedDomainAuthInformationInternalAes information class (section 2.2.7.2).

For more information about domain trust authentication material, see [MS-ADTS] section 6.1.6.9.1.

 typedef struct _LSAPR_TRUSTED_DOMAIN_AUTH_INFORMATION_INTERNAL_AES {
     UCHAR                                   AuthData[64];
     UCHAR                                   Salt[16];
     [range(0, MAX_AUTHBLOB_SIZE)] ULONG     cbCipher;
     [size_is(cbCipher)] PUCHAR              Cipher;
 } LSAPR_TRUSTED_DOMAIN_AUTH_INFORMATION_INTERNAL_AES,  *PLSAPR_TRUSTED_DOMAIN_AUTH_INFORMATION_INTERNAL_AES;

AuthData: An authentication signature HMAC-SHA-512 hash of the value of Cipher+versionbyte+versionbyte length as specified in AES Cipher Usage (section 5.1.5).

Salt: A random number used by the client to encrypt the data stored in the Cipher location with AES.

cbCipher: The size of Cipher in bytes.

Cipher: A pointer to a UCHAR buffer to carry encrypted cleartext password data. The encryption key is method-specific, while the algorithm is specified in AES Cipher Usage (section 5.1.5) and is common for all methods that use this structure.

Share via

2.2.7.29 LSAPR_TRUSTED_DOMAIN_AUTH_INFORMATION_INTERNAL_AES

Additional resources