3.2.1.4.1.1 AccountGetInfo Abstract Interface

The AccountGetInfo abstract interface retrieves the name of the user or other security principal associated with the current execution context.

Input Parameters: None.

Output Parameters:

OutputAccountName: A string that contains the security account name under which CA is running.

OutputSID: The SID of the security account name under which CA is running.

Processing Rules:

In the following steps, the following local variable is used:

CallerToken: A token/authorization context (section 2.5.2). For more information see [MS-DTYP] section 2.5.2.

• If the CA is running on a computer joined to a domain:

  • Set the OutputAccountName output parameter equal to a string that contains the name of the user or other security principal associated with the current execution context of the CA. The string is the concatenation of the CA_DNS_Domain_Name ADM element, "\", and the  CA_Client_Name ADM element.

  • Invoke the processing rules specified in [MS-DTYP] section 2.7.3 and store the returned value in CallerToken. Set the OutputSID output parameter equal to the CallerToken.Sids[CallerToken.UserIndex].

• Else, set the OutputAccountName output parameter equal to a legacy account name of the form "Engineering\JSmith" or, in the case of a machine account,"workgroup\ComputerName$". Also, set the OutputSID output parameter to NULL.