sec_rgy_auth_plcy_set_info-Sets the authentication policy for an account
#include <dce/policy.h> void sec_rgy_auth_plcy_set_info( sec_rgy_handle_t context, sec_rgy_login_name_t *account, sec_rgy_plcy_auth_t *auth_policy, error_status_t *status);
An opaque handle bound to a registry server. Use sec_rgy_site_open() to acquire a bound handle.
A pointer to the account login name (type sec_rgy_login_name_t). A login name is composed of three character strings, containing the principal, group, and organization (PGO) names corresponding to the account. All three names must be completely specified.
A pointer to the sec_rgy_plcy_auth_t structure containing the authentication policy. The authentication policy structure contains the maximum lifetime for an authentication ticket, and the maximum amount of time for which one can be renewed.
A pointer to the completion status. On successful completion, the routine returns error_status_ok. Otherwise, it returns an error.
The sec_rgy_auth_plcy_set_info() routine sets the indicated authentication policy for the specified account. If no account is specified, the authentication policy is set for the registry as a whole.
Permissions RequiredThe sec_rgy_auth_plcy_set_info() routine requires the a (auth_info) permission on the policy object or account principal for which the data is to be set.
The policy set on an account may be less restrictive than the policy set for the registry as a whole. In this case, the change in policy has no effect, since the effective policy is the most restrictive combination of the principal and registry authentication policies. (See the sec_rgy_auth_plcy_get_effective() routine).
The idl file from which dce/policy.h was derived.
The call was successful.
The user is not authorized to update the specified record.
No account with the given login name could be found.
The DCE Registry Server is unavailable.