VOID
SeTraverseAuditAlarm(
  IN  PLUID OperationID,
  IN  PVOID DirectoryObject,
  IN  PSECURITY_DESCRIPTOR SecurityDescriptor,
  IN  PSECURITY_SUBJECT_CONTEXT SubjectSecurityContext,
  IN  BOOLEAN SubjectContextLocked,
  IN  ACCESS_MASK TraverseAccess,
  IN  PPRIVILEGE_SET Privileges OPTIONAL,
  IN  BOOLEAN AccessGranted,
  IN  KPROCESSOR_MODE AccessMode
  );

Routine Description:

    This routine is called to audit directory traverse operations
    specifically.  It should be called by parse procedures as they traverse
    directories as part of their operation.

Arguments:

    OperationID - LUID identifying the operation in progress

    DirectoryObject - Pointer to the directory being traversed.

    SecurityDescriptor - The security descriptor (if any) attached to the
        directory being traversed.

    SubjectSecurityContext - Security context of the client.

    SubjectContextLocked - Supplies whether the SubjectContext is locked
        for shared access.

    TraverseAccess - Mask to indicate the traverse access for this object
        type.

    Privileges - Optional parameter to indicate any privilges that the
        subject may have used to gain access to the object.

    AccessGranted - Indicates if the access was granted or denied based on
        the access check or privilege check.

    AccessMode - Indicates the access mode used for the access check.  One
        of UserMode or KernelMode.  Messages will not be generated by
        kernel mode accesses.

Return value:

    None.