Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The SeAuditingFileEvents routine determines whether file open events are currently being audited.
Syntax
BOOLEAN SeAuditingFileEvents(
[in] BOOLEAN AccessGranted,
[in] PSECURITY_DESCRIPTOR SecurityDescriptor
);
Parameters
[in] AccessGranted
Set to TRUE if the access attempt was successful, FALSE otherwise.
[in] SecurityDescriptor
This parameter is ignored.
Return value
SeAuditingFileEvents returns TRUE if file open events are currently being audited, FALSE otherwise.
Remarks
For more information about security and access control, see Windows security model for driver developers and the documentation on these topics in the Windows SDK.
Requirements
| Requirement | Value |
|---|---|
| Target Platform | Universal |
| Header | ntifs.h (include Ntifs.h) |
| Library | NtosKrnl.lib |
| DLL | NtosKrnl.exe |
| IRQL | PASSIVE_LEVEL |