3.1.5.13.4 SamrGetDomainPasswordInformation (Opnum 56)

The SamrGetDomainPasswordInformation method obtains select password policy information (without authenticating to the server).

 long SamrGetDomainPasswordInformation(
   [in] handle_t BindingHandle,
   [in, unique] PRPC_UNICODE_STRING Unused,
   [out] PUSER_DOMAIN_PASSWORD_INFORMATION PasswordInformation
 );

BindingHandle: An RPC binding handle parameter, as specified in [C706] section 1.

Unused: A string value that is unused by the protocol. It is ignored by the server. The client MAY<69> set any value.

PasswordInformation: Password policy information from the account domain.

There is no security enforced for this method beyond the server-wide access check specified in section 3.1.2.1.

Upon receiving this message, the server MUST process the data from the message subject to the following constraints:

1. The output parameter PasswordInformation.MinPasswordLength MUST be set to the minPwdLength attribute value on the account domain object.

2. The output parameter PasswordInformation.PasswordProperties MUST be set to the pwdProperties attribute value on the account domain object.

3. The method MUST return STATUS_SUCCESS.