Platform SDK: Access Control

Auditing Access To Private Objects

A protected server can use the following functions to generate audit reports in the security event log.

Function Description
AccessCheckAndAuditAlarm Same as the AccessCheck function except that it can generate audit messages for failed or successful access attempts.
AccessCheckByTypeAndAuditAlarm Same as the AccessCheckByType function except that it can generate audit messages for failed or successful access attempts.
AccessCheckByTypeResultListAndAuditAlarm Same as the AccessCheckByTypeResultList function except that it can generate audit messages for failed or successful access attempts.
AccessCheckByTypeResultListAndAuditAlarmByHandle Same as the AccessCheckByTypeResultListAndAuditAlarm function except that it allows the calling thread to perform the access check before impersonating the client.
ObjectCloseAuditAlarm Generates an audit message to indicate a client tried to close a private object.
ObjectDeleteAuditAlarm Generates an audit message to indicate a client tried to delete a private object.
ObjectOpenAuditAlarm Generates an audit message to indicate a client tried to open or create a private object.
ObjectPrivilegeAuditAlarm Generates an audit message to indicate a client tried to use a specified set of privileges in conjunction with an attempt to access a private object.
PrivilegedServiceAuditAlarm Generates an audit message to indicate a client tried to use a specified set of privileges.