2.1 Transport

This protocol SHOULD<3> use the following RPC protocol sequences as specified in [MS-RPCE] section 2.1:

• RPC over TCP/IP

• RPC over named pipes

This protocol uses RPC dynamic endpoints for RPC over TCP/IP, as specified in [C706] section 4.

This protocol uses the following well-known endpoint. This endpoint is a named pipe for RPC over SMB:

• \PIPE\NETLOGON

This protocol uses the mailslot datagram delivery service ([MS-MAIL] and [MS-SMB]). Mailslot messages (see [MS-MAIL] section 2.2.1) are sent to the following mailslot:

• \MAILSLOT\NET\NETLOGON. This named mailslot is used in Netlogon replication, as defined in section 3.6.

This protocol MUST use the universally unique identifier (UUID) 12345678-1234-ABCD-EF00-01234567CFFB. The RPC version number is 1.0.

This protocol uses the Netlogon SSP. The server MUST use the RPC security provider extensions ([MS-RPCE] section 2.2.1.1.7). It SHOULD<4> register the Netlogon security package as specified in section 3.3.