[MS-DFSRH]: DFS Replication Helper Protocol Specification

More documents

Recommendations

Info

3 Protocol Details3.1 Server Role Details3.1.1 Abstract Data ModelNo abstract data model is required.3.1.2 TimersNo timers are required.3.1.3 InitializationThe server MUST be considered to be initialized after a successful activation of one of the threeinterfaces that are registered with the Distributed Component Object Model (DCOM) RemoteProtocol infrastructure, as specified in [MS-DCOM] section 1.3.6.3.1.4 Higher-Layer Triggered EventsAll method invocations are triggered by higher-layer events, such as commands issued withinadministrative and diagnostic applications. The details of method invocations are provided in thefollowing sections.3.1.5 Message Processing Events and Sequencing Rules3.1.5.1 Methods with PrerequisitesThe methods of the IServerHealthReport, IADProxy, and IADProxy2 interfaces require noprerequisite calls against the server.3.1.5.2 IADProxy InterfaceThe IADProxy interface, as specified in MS-DCOM, inherits the IUnknown interface. Method opnumfield values start with 3; opnum values 0 through 2 represent the IUnknown_QueryInterface,AddRef, and Release methods, respectively.To receive incoming remote calls for this interface, the server MUST implement a DCOM object usingthe UUID {4BB8AB1D-9EF9-4100-8EB6-DD4B4E418B72}.In these methods, the DFS-R Helper Protocol calls several Windows APIs and returns the error codesreturned by these APIs. In the following sections, these codes are referred to as nonzeroimplementation-specific error codes.Methods in RPC Opnum OrderMethodCreateObjectDeleteObjectDescriptionCreate an Active Directory object with the specified distinguished name and attributes.Opnum: 3Delete an Active Directory object with the specified distinguished name.Opnum: 452 / 81[MS-DFSRH] – v20080207DFS Replication Helper Protocol SpecificationCopyright © 2008 Microsoft Corporation.Release: Thursday, February 7, 2008
MethodModifyObjectDescriptionAdd, delete, or modify attributes of an Active Directory object with the specifieddistinguished name.Opnum: 53.1.5.2.1 CreateObject Method (Opnum 3)The CreateObject method MUST execute an LDAP command under machine security credentials tocreate an Active Directory object with a specified distinguished name and attributes.HRESULT CreateObject([in] BSTR domainControllerName,[in] BSTR distinguishedName,[in] SAFEARRAY(_AdAttributeData)* attributes,[in] BSTR verifyNameDomainControllerName);domainControllerName: MUST be the FQDN of the domain controller to which the methodsends the LDAP request.distinguishedName: MUST be the distinguished name of the Active Directory object that isbeing created. The distinguished name of any object in Active Directory can be used. Theformat of the distinguished name is specified in [RFC2251] section 4.1.3.attributes: The safe array of attributes that MUST be created for the new object. As an inputparameter, the SAFEARRAY is created by the client.verifyNameDomainControllerName: If the attributes of the object refer to an object inanother domain, the client MUST specify the domain controller in that domain that will be usedto verify the reference. The LDAP_SERVER_VERIFY_NAME_OID control will be added to theLDAP command. If this parameter does not specify a domain controller that can be contactedto validate these references, the method MUST fail and return an LDAP protocol failure.The LDAP control is specified in [MS-ADTS] section 3.1.1.3.4.1.16.Return Values: The method MUST return:• 0 on success.• For LDAP protocol failures:• If the LDAP error is LDAP_OPERATIONS_ERROR, dfsrHelperLdapErrorBase + the serversideerror code.• For all other LDAP errors, dfsrHelperLdapErrorBase + the LDAP return code. For moreinformation, see [LDAP-ERR].• For all other failures, an implementation-specific nonzero HRESULT error code, as specifiedin [MS-ERREF] section 2.1, between 0x80000000 and 0xFFFFFFFF. For protocol purposes,all nonzero values MUST be treated as equivalent failures.When the server receives this message, it MUST check whether the caller has sufficient rights toperform the operation. The implementation SHOULD perform a check to verify that the rights areappropriate for the creation of Active Directory objects.[MS-DFSRH] – v20080207DFS Replication Helper Protocol SpecificationCopyright © 2008 Microsoft Corporation.Release: Thursday, February 7, 200853 / 81
Page 2 and 3: DateRevisionHistoryRevisionClassCom
Page 4 and 5: 2.2.1.5.17.11 EVENT_DFSR_VOLUME_JOU
Page 6 and 7: 1 IntroductionThe Distributed File
Page 8 and 9: [UNICODE4.0] The Unicode Consortium
Page 10 and 11: • IServerHealthReportThe IADProxy
Page 12 and 13: For more information about this LDA
Page 14 and 15: versionVector: MUST be the version
Page 16 and 17: Child ElementsElement Type Descript
Page 18 and 19: Element Type DescriptionbacklogInbo
Page 20 and 21: Child ElementsElement Type Descript
Page 22 and 23: Element Type DescriptionfileFilter
Page 24 and 25: 24 / 81[MS-DFSRH] - v20080207DFS Re
Page 26 and 27: Element Type Descriptionerror error
Page 28 and 29: Element Type Descriptionimplementat
Page 30 and 31: 2.2.1.5.15 errorReferences ElementT
Page 32 and 33: When the server detects any of the
Page 34 and 35: Error parameters:Ref IDMeaning1312.
Page 36 and 37: 2.2.1.5.17.13 EVENT_DFSR_CS_ERROR M
Page 38 and 39: Ref IDMeaning4206.8 The name of the
Page 40 and 41: Ref IDMeaning4304.2 The file path.4
Page 42 and 43: Ref IDMeaning4502.4 The name of the
Page 44 and 45: Ref IDMeaning5102.1 The replicated
Page 46 and 47: Ref IDMeaning6008.1 The configurati
Page 48 and 49: Ref IDMeaning6402.8 The member GUID
Page 50 and 51: Ref IDMeaning6410.3 The overlapped
Page 54 and 55: If the user does not have sufficien
Page 56 and 57: 3.1.5.2.3 ModifyObject Method (Opnu
Page 58 and 59: [in] BSTR distinguishedName,[in] SA
Page 60 and 61: [in] BSTR distinguishedName,[in] SA
Page 62 and 63: flags: Any values of the DfsrReport
Page 64 and 65: and 0xFFFFFFFF on failure. For prot
Page 66 and 67: 3.1.5.4.6 GetReferenceBacklogCount
Page 68 and 69: 4 Protocol Examples4.1 Example of M
Page 70 and 71: 0127727764510000000Monday, October
Page 72 and 73: 6 Appendix A: Full IDLThe DFS-R Hel
Page 74 and 75: [in] long flags,[out] SAFEARRAY(_Ve
Page 76 and 77: The IADProxy2 interface is availabl
Page 78 and 79: Section 2.2.1.5.17.22: This error i
Page 80 and 81: GlossaryHHealth report XML exampleH

[MS-DFSRH]: DFS Replication Helper Protocol Specification

Create successful ePaper yourself

Delete template?

Save as template?