Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The FwpmSubLayerSetSecurityInfoByKey0 function sets specified security information in the security descriptor of a sublayer.
Syntax
NTSTATUS FwpmSubLayerSetSecurityInfoByKey0(
[in] HANDLE engineHandle,
[in, optional] const GUID *key,
[in] SECURITY_INFORMATION securityInfo,
[in, optional] const SID *sidOwner,
[in, optional] const SID *sidGroup,
[in, optional] const ACL *dacl,
[in, optional] const ACL *sacl
);
Parameters
[in] engineHandle
Handle for an open session to the filter engine. Call FwpmEngineOpen0 to open a session to the filter engine.
[in, optional] key
Unique identifier of the sublayer. This must be the same GUID that was specified when the application called FwpmSubLayerAdd0.
[in] securityInfo
The type of security information to set.
[in, optional] sidOwner
The owner's security identifier (SID) to be set in the security descriptor.
[in, optional] sidGroup
The group's SID to be set in the security descriptor.
[in, optional] dacl
The discretionary access control list (DACL) to be set in the security descriptor.
[in, optional] sacl
The system access control list (SACL) to be set in the security descriptor.
Return value
| Return code/value | Description |
|---|---|
| ERROR_SUCCESS 0 |
The security descriptor was set successfully. |
| FWP_E_* error code 0x80320001—0x80320039 |
A Windows Filtering Platform (WFP) specific error. See WFP Error Codes for details. |
| RPC_* error code 0x80010001—0x80010122 |
Failure to communicate with the remote or local firewall engine. |
| Other NTSTATUS codes | An error occurred. |
Remarks
If the key parameter is NULL or if it is a NULL GUID, this function manages the security information of the sublayers container.
This function cannot be called from within a transaction it fails with FWP_E_TXN_IN_PROGRESS. See Object Management for more information about transactions.
This function can be called within a dynamic session if the corresponding object was added during the same session. If this function is called for an object that was added during a different dynamic session, it fails with FWP_E_WRONG_SESSION. If this function is called for an object that was not added during a dynamic session, it fails with FWP_E_DYNAMIC_SESSION_IN_PROGRESS.
This function behaves like the standard Win32 SetSecurityInfo function. The caller needs the same standard access rights as described in the SetSecurityInfo reference topic.
FwpmSubLayerSetSecurityInfoByKey0 is a specific implementation of FwpmSubLayerSetSecurityInfoByKey. See WFP Version-Independent Names and Targeting Specific Versions of Windows for more information.
Requirements
| Requirement | Value |
|---|---|
| Minimum supported client | Available starting with Windows Vista. |
| Target Platform | Universal |
| Header | fwpmk.h |
| Library | fwpkclnt.lib |
| IRQL | <= PASSIVE_LEVEL |