Advapi32.dll function interface description

Function prototype description
Abortsystemshutdown termination start by using the initiatezsystemshutdown Function
Dynamic System
Accesscheck server application Program Use this function to control and verify
Access Permissions of an object
Accesscheckandauditalarm performs an access verification and generates a check message,
Or determine whether a customer process has the necessary privileges
Addaccessallowedace
Ask the control table ACL and allow access to the specified security identifier Sid
Addaccessdeniedace adds an ACL to the access control table and adds a denied access control.
System ace
Addace adds one or more
Access control items (ACE)
Addauditaccessace
Ask the Control item Ace. The specified access identifier Sid will be checked.
Adjusttokengroups: Adjust the group in the specified access tag
Adjusttokenprivileges allows or disables privileges in the specified access tag
Allocateandinitializesid is assigned and initialized with up to 8 sub-Permissions
Allocatelocallyuniqueid allocates a unique local identifier luid
Areallaccessesgranted
All access privileges required in the mask
Areanyaccessesgranted test whether a required access permission set has any
The permission is allowed by an access mask.
Backupeventlog saves the specified event records to a backup file
Changserviceconfig changes the configuration parameters of the specified server
Cleareventlog clears a specified event record and selects to clear this record
The file is saved in a backup file.
Closeeventlog closes a specified event record
Closeservicehandle disables service control management returned by openscmanager
Program handle, or by openservice or
Service object handle returned by createservice
Controlservice sends a control code to the specified server.
Copysid copies the Security Identifier Sid to the specified buffer zone
Createprivateobjectsecurity is a new, protected Server Object allocation and initial
Initialize an auto-related security descriptor
Createprocessasuser creates a new thread and its main thread to execute the specified
Executable files
Createservice creates a service object and adds it to the specified server
In the database of the Service Control Management Program
Deleteace: deletes a specified access control entry from an access control table ACL.
Deleteswrvice deletes a specified service from the service control management database
Deregistereventsource disables the handle returned by the registereventsource function.
Destroy privateobject Security deletes the security descriptor of a protected service object
Deplicatetoken creates an access tag by copying an existing tag.
Enumdependentservices enumeration depends on the services of another specified service
Enumservicesstatus enumeration for each service in the specified service control program database
Name and status
Define prefixsid test whether the prefix values of the two Security Identifiers are equal
The specified Sid compares the two security identifiers to determine whether the SID values are equal.
In the access control table ACL, findfirstfreeace retrieves a pointer pointing to the first free byte.
Freesid releases the security identifier assigned by the allocteandinitializsid Function
Getace obtains the pointer to the specified Access Control item in the access control table.
Getaclinformation
Getfilesecurity obtains the specified security information of a file or directory.
Getkernelobjectsecurity check to protect the security descriptor of a memory object
Getlengthsid returns the length of a byte with a valid security identifier structure.
Getnumberofeventlogrecords checks the number of records in a given event record.
Getoldesteventlogrecord: obtains the absolute number of the oldest record in a given event record.
Getprivateobjectsecurity is checked from the security descriptor of a protected Server Object
Retrieve Information
Getsecuritydescriptorcontrol checks the control and correction information of a security descriptor.
Getsecuritydescriptordacl: obtains the pointer to the free access control table of the security descriptor.
Getsecuritydescriptorgroup checks the basic information of a security descriptor.
Getsecuritydescriptorlength returns a valid security_descriptor.
Structure Length
Getsecuritydescriptorowner checks the Security Descriptor Owner information
Getsecuritydescriptorsacl: obtains the pointer of the system access control table in the specified security descriptor.
Getsevicedisplayname: obtains the display name related to the specified service name.
Getsevicekeyname returns the service name associated with the specified display name
Getsididentifierauthority returns the specified security identifier
Address of the sid_identifier_authority Structure
Getsidlengthrequired returns the security identifier that stores a specified number of sub-permissions.
Buffer length required for the Structure
Getsidauthority returns the address of the specified sub-permission in the specified security identifier structure.
Getsidsubauthoritycount returns the domain address of the Security Identifier structure containing the sub-Permission count
Gettokeninformation: obtains information about the type specified by the Access tag.
GetUserName returns the username of the current thread
Impersonateloggedonuser allows the call thread to simulate a user
Impersonatenamedpipeclient simulates a customer application with a famous Pipeline
Impersonateself obtains the access tag of a simulated call process security description table.
Initializeacl creates a new access control table
Initializesecuritydescriptor initializes a new security descriptor
Initializesid initializes a Security Identifier
Initiatesystemshoutdown
Istextunicode verifies whether the specified buffer contains the Unicode text format
Isvalidacl invalidates an access control table
Isvalidsecuritydescriptor
Isvalidsid verifies whether the number of corrections is within a known range
And whether the number of sub-permissions is smaller than the maximum value to check whether a security identifier is legal
Lockservicedatabase locks the database of the specified service control manager.
Logonuser logs on to a new user
Lookupaccountname accepts a system and account name as input
Lookupaccountsid accepts a security identifier as the input.
Lookupprivilegedisplayname: obtains a display name indicating the privilege.
Lookupprivilegename checks for a specific system with the specified local Unique Identifier
The name of the privilege indicated by the identifier
Lookupprivilegevalue checks for a local unique identifier used on the specified system
Makeabsolutesd uses a security descriptor in an auto-related format as a template
Creates an absolute security descriptor.
Makeselfrelativesd uses an absolute security descriptor as a template,
Create a security descriptor in self-related format
Mapgenericmask maps general access in the specified access shield to specific and standard access
Notifybootconfigstatus notifies the Service Control Manager and starts the system to accept the configuration.
Notifychangeeventlog the application receives a notification when an event is written into the logon file.
Objectcloseauditalarm: when an object's handle is deleted, this function generates a check message.
Objectopenauditalarm this function generates a check message when the customer application attempts to obtain access to an object or creates a new object.
Objectprivilegeauditalarm when a customer application tries to use a handle
When the application performs a privileged operation on this object
Function generation check message
Openbackupeventlog opens a backup event record handle
Openeventlog opens an event record handle
Openprocesstoken opens an access tag associated with the process
Openscmanager creates a connection with the Service Control Manager on a specified machine.
System, and open the specified database
Open an existing service
Openthreadtoken opens the access tag associated with the specified Thread
Privilegecheck tests the Security Descriptor represented by the specified access tag
Determines whether the security descriptor contains the specified permissions.
Privilegedseviceauditalarm
Data Generation check message
Queryserviceconfig retrieves the configuration parameters of the specified service
Queryservicelockstatus: checks the blocked status of the database of the specified service control manager.
Status
Queryserviceobjectsecurity: obtains the security descriptor of the service object.
Queryservicestatus: checks the current status of the specified service.
Readeventlog reads all entries from a given event record
Regclosekey releases the handle for a given keyword
Regconnectregistry establishes a connection with a predefined handle on another computer
Regcreatekey creates a specified keyword. If this keyword is saved at login
In, the keyword is opened.
Regcreatekeyex creates a specified keyword. If this keyword is saved at login
In, the keyword is opened.
Regdeletekey: delete a specified keyword.
Keyword
Regdeletevalue deletes a named value from the given registration keyword.
Division
Regenumkey enumeration of subkeywords for a given opened keyword
Regenumkeyex enumeration of subkeywords for a given opened keyword
Regenumvalue refers to the value of a subkeyword for a given opened keyword.
Regflushkey writes all attributes of a given opened keyword to the registration.
Reggetkeysecurity check to protect the security descriptor of a given opened keyword
Registereventsource returns the event handle represented by the source name to use this sentence.
Handle record events
Registerservicectrlhandler registers a function for the specified service to process service control.
Request
Regloadkey creates
The subkeyword in HKEY_LOCAL_MACHINE and specify
The registration information in the file is stored in this keyword.
Regpolicychangekeyvalue indicates a keyword or any of its subkeywords.
Changes
Regopenkey open the specified keyword
Regopenkeyex open the specified keyword
Regqueryinfokey: obtains the information of the specified registration keyword.
Regquerymultiplevalues: Retrieves a list of opened registration keyword values.
Type and Data
Regqueryvalue is checked in registration to associate it with a value not named by the specified keyword.
System value
Regqueryvalueex is used to retrieve the specified
Type and data of the Value Name
Regreplacekey uses another file to replace a keyword and its sub-
Keyword File
Regrestorekey reads the registration information in the specified file and loads it
Fixed keywords
Regsavekey stores the given keyword and Its subkeyword and value in a new file.

Regsetkeysecurity sets the security descriptor for an opened registration keyword
Regsetvalue associates a value with a given keyword.
Regsetvalueex stores data to the value of an opened registration keyword.
Domain
Regunloadkey exits the specified keyword and subkeyword from registration
Reportevent writes an entry at the end of a given record
Reverttoself terminate the simulated customer application
Setaclinformation: Set the information of the specified access control table
Setfilesecurity sets the security of a file or directory object
Setkernelobjectsecurity sets the security of an internal object
Setprivateobjectsecurity modify the security of a private object
Setsecuritydescriptordacl: Set information in a random access control table
Setsecuritydescriptorgroup: sets the original group information of an absolute security descriptor.
Setsecuritydescriptorowner sets the owner information of an absolute security descriptor.
Setsecuritydescriptorsacl
Setservicebits use Service Control Manager and Server Service Registration 1
Service Type
Setserviceobjectsecurity: sets the security descriptor of the service object that calls the service.
Setservicestatus indicates the status information of the Service Control Manager called.
Information
Setthreadtoken allocates a simulated flag to the thread or stops the thread.
Use a simulated flag
Settokeninformation sets various types of information for a specific access tag
Startservice starts a service
Startservicectrldispatcher connects the main thread of a service process to the Service Control Manager
Program
Unlockservicedatabase unlock a database of the Service Control Manager