BOOLEAN
SeAuditingFileEventsWithContext(
      __in BOOLEAN AccessGranted,
      __in PSECURITY_DESCRIPTOR SecurityDescriptor,
      __in_opt PSECURITY_SUBJECT_CONTEXT SubjectSecurityContext
  );

Routine Description:

    This routine is to be called by a file system to quickly determine
    if we are auditing file open events.  This allows the file system
    to avoid the often considerable setup involved in generating an audit.

Arguments:

    AccessGranted - Supplies whether the access attempt was successful
        or a failure.

    SecurityDescriptor - SD to check sacl                                          
    
    SubjectSecurityContext - context to verify per user auditing from
    
Return Value:

    Boolean - TRUE if events of type AccessGranted are being audited, FALSE
        otherwise.