.\" -*- nroff -*-
.\" Generated file - DO NOT EDIT!
.TH NtAccessCheck 3w "Oct 2012" "Wine API" "Wine API"

.SH NAME
\fBNtAccessCheck\fR (NTDLL.@)
.SH SYNOPSIS
NTSTATUS NtAccessCheck
 (
  PSECURITY_DESCRIPTOR \fISecurityDescriptor\fR,
  HANDLE               \fIClientToken\fR,
  ACCESS_MASK          \fIDesiredAccess\fR,
  PGENERIC_MAPPING     \fIGenericMapping\fR,
  PPRIVILEGE_SET       \fIPrivilegeSet\fR,
  PULONG               \fIReturnLength\fR,
  PULONG               \fIGrantedAccess\fR,
  NTSTATUS*            \fIAccessStatus\fR
 )

.SH DESCRIPTION
.PP
Checks that a user represented by a token is allowed to access an object represented by a security descriptor. 

.SH PARAMS
\fISecurityDescriptor\fR \fB[In]\fR  The security descriptor of the object to check.
.PP
\fIClientToken\fR \fB[In]\fR  Token of the user accessing the object.
.PP
\fIDesiredAccess\fR \fB[In]\fR  The desired access to the object.
.PP
\fIGenericMapping\fR \fB[In]\fR  Mapping used to transform access rights in the \fBSD\fR to their specific forms.
.PP
\fIPrivilegeSet\fR \fB[In/Out]\fR  Privileges used during the access check.
.PP
\fIReturnLength\fR \fB[Out]\fR  Number of bytes stored into \fIPrivilegeSet\fR.
.PP
\fIGrantedAccess\fR \fB[Out]\fR  The actual access rights granted.
.PP
\fIAccessStatus\fR \fB[Out]\fR  The status of the access check.
.PP

.SH RETURNS
.PP
\fBNTSTATUS\fR code. 

.SH NOTES
.PP
\fIDesiredAccess\fR may be \fBMAXIMUM_ALLOWED\fR, in which case the function determines the maximum access rights allowed by the \fBSD\fR and returns them in \fIGrantedAccess\fR. The \fISecurityDescriptor\fR must have a valid owner and groups present, otherwise the function will fail. 

.SH IMPLEMENTATION
.PP
Declared in \fB"winternl.h"\fR. 
.PP
Implemented in \fB"dlls/ntdll/sec.c"\fR. 
.PP
Debug channel \fB"ntdll"\fR.