简体繁体中英

Impersonating and CreateProcess

原文 2011-10-11 19:48:07 0 1 c++/ windows/ security/ process/ acl

The document states CreateProcess create a process running under the calling process's security context, not the current impersonating token's security context. Does this mean the permission for the new process will be the same regardless impersonating or not?

I have the following code that fails with ACCESS_DENIED error:

Process A runs under administrator;
Process A impersonates a normal user “test”;
Process A starts a new process B by calling CreateProcess;
Process B calls OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, ..);

Step 4 fails with ACCESS_DENIED error (5). I checked process B is running under Administrator as process A. Why would it fail when it's running under the same user context as process A?

1 answers

As a commenter said, you want CreateProcessAsUser. You might find the following sample code on MSDN helpful, I used it with success a few years ago: http://support.microsoft.com/kb/165194

Paths and CreateProcess

CreateProcess handling

CreateProcess() Error

createProcess() not working?

CreateProcess not working

Linux CreateProcess?

How to tell if current thread is impersonating?

Convert argument to LPWSTR CreateProcess

Run resource with CreateProcess

CreateProcess() lpCurrentDirectory has no effect

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Paths and CreateProcess CreateProcess handling CreateProcess() Error createProcess() not working? CreateProcess not working Linux CreateProcess? How to tell if current thread is impersonating? Convert argument to LPWSTR CreateProcess Run resource with CreateProcess CreateProcess() lpCurrentDirectory has no effect

Related Tags

Impersonating and CreateProcess

Question

1 answers

solution1 2 2011-10-11 20:01:35

solution1
2 2011-10-11 20:01:35