Name-based authorization (rpc_c_authz_name) provides a server with the client's principal name. The server call to rpc_binding_inq_auth_caller( ) retrieves the name from the binding handle associated with the client and returns it as a character string.
It is not recommended that names be used for authorization. To perform access checking using client principal names, the names must be stored in the access lists associated with the protected objects. Each time a name is changed, the change must be propagated through all the access lists in which the name is defined.