How are UserTokens maintained?

From: mask zero (maskofzero_at_hotmail.com)
Date: 03/21/04

  • Next message: Michel Gallant: "Re: authenticode"
    Date: 20 Mar 2004 17:21:35 -0800
    
    

    The question is this:
    How are user login/security tokens (and i mean primary tokens) maintained
    by the system? If in a session-change notification, i get a primary token
    of the user that is logging in or out, and then i proceed to modify the token
    so that i can do a createprocessasuser with the characteristics i desire,
    will that change something global to the system?
    Or is it more advisable for me to dup the token first? (A real pain in the ass).


  • Next message: Michel Gallant: "Re: authenticode"

    Relevant Pages

    • Re: Why DuplicateToken
      ... tokens that can be impersonated are primary tokens. ... removing the DuplicateToken and using the token acquired with LogonUser ... Why Duplicate ...
      (microsoft.public.dotnet.framework.aspnet.security)
    • Re: How are UserTokens maintained?
      ... you should not modify the token but make a copy of it. ... param to createprocasuser. ... > How are user login/security tokens (and i mean primary tokens) maintained ...
      (microsoft.public.platformsdk.security)
    • Re: Whats the difference ...
      ... If the token is an impersonation token then SetThreadToken ... Jeff ... >> ImpersonateLoggedOnUser takes both primary tokens and impersonation ... >> tokens, ...
      (microsoft.public.platformsdk.security)