sec_rgy_properties_get_info-Returns registry properties
#include <dce/policy.h> void sec_rgy_properties_get_info( sec_rgy_handle_t context, sec_rgy_properties_t *properties, error_status_t *status);
An opaque handle bound to a registry server. Use sec_rgy_site_open() to acquire a bound handle.
A pointer to a sec_rgy_properties_t structure to receive the returned property information. A registry's property information contains information such as the default and minimum lifetime and other restrictions on privilege attribute certificates, the realm authentication name, and whether or not this replica of the registry supports updates.
A pointer to the completion status. On successful completion, the routine returns error_status_ok. Otherwise, it returns an error.
The sec_rgy_properties_get_info() routine returns a list of the registry properties.
The property information consists of the following:
A stamp specifying the earliest version of the registry server software that can read from this registry.
A stamp specifying the earliest version of the registry server software that can write to this registry.
The minimum period of time for which an authentication ticket remains valid.
The default period of time for which an authentication certificate (ticket-granting ticket) remains valid. A process can request an authentication certificate with a longer lifetime. Note that the maximum lifetime for an authentication certificate cannot exceed the lifetime established by the effective policy for the requesting account.
The lowest UNIX ID that can be assigned to a principal in the registry.
The lowest UNIX ID that can be assigned to a group in the registry.
The lowest UNIX ID that can be assigned to an organization in the registry.
The maximum UNIX ID that can be used for any item in the registry.
A character string naming the cell controlled by this registry.
The UUID of the cell controlled by this registry.
Flags indicating whether:
If TRUE, the registry database is read-only.
If TRUE, privilege attribute certificates can be generated for use at any site.
If FALSE, passwords can be distributed over the network. If this flag is TRUE, passwords will be stripped from the returned data to the sec_rgy_acct_lookup(), and other calls that return an account's encoded password.
All registry UUIDs contain embedded UNIX IDs. This implies that the UNIX ID of any registry object cannot be changed, since UUIDs are immutable.
Permissions RequiredThe sec_rgy_properties_get_info() routine requires the r (read) permission on the policy object from which the property information is to be returned.
The idl file from which dce/policy.h was derived.
The call was successful.
The DCE Registry Server is unavailable.