Can the LocalSystem account impersonate any user ? Even if the user is not logged on ? | ansaurus

tags:

views:

118

answers:

1

Q:

Can the LocalSystem account impersonate any user ? Even if the user is not logged on ?

Hi,

I have a Windows service running as LocalSystem that needs to access some network resources. I found a way to impersonate a user that is currently logged on, by retrieving the token with OpenProcessToken, duplicating it and calling WindowsIdentity.Impersonate. That way I can access the same network resources as the impersonated user.

However, that means my service will only work if there is a logged on user... So I was thinking that, since the LocalSystem has all privileges on the machine, perhaps it can impersonate a user that is not currently logged on ? Or log on as any (local) user without knowing its password ? Assuming it's possible, how can I do it ?

Thanks in advance for any help

A:

Try using the WindowsIdentity constructor taking the username as a string.

Amnon 2010-06-07 10:05:20

Won't work in my case... the documentation states : *This constructor is intended for use on computers joined only to Windows Server 2003 domains. An exception is thrown for other domain types.*. Apparently I'm not on a Server 2003 domain, since I get a `SecurityException` with the following message : "Incorrect function"

Thomas Levesque 2010-06-07 10:12:04

I think it may be possible with the API call CreateToken(), but I've never tried it.

Amnon 2010-06-07 13:43:08

related questions

Subsonic Vs NHibernate

How to check For File Lock in C# ?

Is nAnt still supported and suitable for .net 3.5/VS2008?

Limit size of Queue<T> in .NET?

Viewstate invalid when using Safari

Free OCR library

Unhandled Exception Handler in .NET 1.1

Localising date format descriptors

Get a new object instance from a Type in C#

VFP .NET OLEdb provider does not work in Win 64-Bits. Help

.NET Testing Framework Advice

Embedded Database for .net that can run off a network

Automatically update version number

Homegrown consumption of web services

How do you migrate a large app from VB6 to VB .net ?

.NET Migrations Engine

Adding Scripting functionality to .NET applications

SQLite and XSD

Floating Point Number parsing: Is there a Catch All algorithm?

How do I programmatically create a PDF in my .NET application?

How do I sync the SVN revision number with my ASP.NET web site?

XSD DataSets and ignoring foreign keys

Anatomy of a "Memory Leak"

Reliable Timer in a Console Application

How do I calculate relative time?