2.1.2 RPC Client Settings

The RPC client MUST use security support provider (SSP) security provided over RPC as specified in [MS-RPCE], for sessions using TCP as the RPC transport protocol. A client MUST authenticate using RPC_C_AUTHN_GSS_NEGOTIATE.

A client MUST use TCP as the RPC transport.

A client SHOULD<1> request the RPC_C_AUTHN_LEVEL_PKT_PRIVACY authentication level. A client MAY request RPC_C_AUTHN_LEVEL_PKT_INTEGRITY authentication level instead, when data encryption is not required.