Greetings - I would like to remove privileges from my process, and elevated permissions conferred through membership in the local Administrators group. Just like DropMyRights.exe, but I want to modify the token of the current process.
ProcessPrivileges (on CodePlex) makes removing the privileges easy. Adding the deny flag for the Administrators group seems not so obvious.
There seems to be a lot of information on creating processes specifying a "*SAFER_LEVELID_NORMALUSER*". The only information I could find on modifying group membership of existing tokens was in ISBN: 0321294319.
Anyone done this?
Thanks - Greg