LsaRegisterLogonProcess : Access denied
frank.thiry_at_gmail.com
Date: 05/25/05
- Next message: Marvin Bobo: "Re: Setting Passwords via DSML with non-admin type Domain User Cre"
- Previous message: Patt: "CAPICOM: How to Convert ExtendedProperty (CAPICOM_PROPID_KEY_PROV_INFO) to Struct _CRYPT_KEY_PROV_INFO"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 25 May 2005 12:18:39 -0700
Hi all,
I'm using the LSALogonUser (s4uLogon). I'm trying to connect with the
LsaRegisterLogonProcess but this one fails
(STATUS_PORT_CONNECTION_REFUSED) even if my calling process (account
define in the Application Pool) have the SeTcbPrivilege (Act as part of
operating system).
I'm definetly need a token with SecurityImpersonation as Impersonation
level (using LsaConnectUntrusted give me a SecurityIdentification, not
enough for impersonation).
The account is define in my AD (Service account), localy the
SeTcbPrivilege is OK, this account is also domain controller. is
running the w3s service.
I'm using the Windows Authentication mode (IIS 6) and i'm running on a
win2003 box.
please tell me how to connect with LsaRegisterLogonProcess.
Thanks a lot,
FT
- Next message: Marvin Bobo: "Re: Setting Passwords via DSML with non-admin type Domain User Cre"
- Previous message: Patt: "CAPICOM: How to Convert ExtendedProperty (CAPICOM_PROPID_KEY_PROV_INFO) to Struct _CRYPT_KEY_PROV_INFO"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
