Logonuser and ImpersonateLoggedOnUser

after calls to
logonuser()
impersonateloggedouuser()
the call to openprocess() fails with Access is denied.
what i need to do to get the access right back to call OpenProcess success.

Oct 6 '06 #1

Subscribe Post Reply

14299

eliang

after calls to
logonuser()
impersonateloggedouuser()
the call to openprocess() fails with Access is denied.
what i need to do to get the access right back to call OpenProcess success.

the following is the code i did with the output.

Expand|Select|Wrap|Line Numbers

  #include <windows.h> 

#include <stdio.h>

#include <Userenv.h>
 
check_open_proceess( char* comment )

    {

    DWORD pid;

    HANDLE phandle;
 
    pid = GetCurrentProcessId();

    phandle = OpenProcess( PROCESS_QUERY_INFORMATION, TRUE, pid );

    if( phandle )

        CloseHandle(phandle);

    else

        {

        LPVOID    lpMsgBuf;

        DWORD errorid = GetLastError();
 
        FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,

            NULL,

            errorid,

            MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language

            (LPTSTR) &lpMsgBuf,

            0,

            NULL );
 
        printf("Error check_open_proceess at %s.\n%s", comment, lpMsgBuf);

        LocalFree( lpMsgBuf );

        }

    printf( "pid %ld: %s\n\n", pid, comment );
 
    }
 
void main( int argc, char* argv[] )

{

HANDLE hUserToken = 0;
 
check_open_proceess( "program start" );
 
if (LogonUser( 

    "user1",

    ".",

    "password1",

    LOGON32_LOGON_INTERACTIVE,

    LOGON32_PROVIDER_DEFAULT,

    &hUserToken) == 0)

    {

    LPVOID    lpMsgBuf;

    DWORD errorid = GetLastError();
 
    FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,

        NULL,

        errorid,

        MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language

        (LPTSTR) &lpMsgBuf,

        0,

        NULL );
 
    printf("Error logging on as RADS.\n%s", lpMsgBuf);

    Sleep(2000);
 
    LocalFree( lpMsgBuf );

    }

check_open_proceess( "after LogonUser" );
 
if (!ImpersonateLoggedOnUser(hUserToken))

    {

    LPVOID    lpMsgBuf;

    DWORD errorid = GetLastError();
 
    FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,

        NULL,

        errorid,

        MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language

        (LPTSTR) &lpMsgBuf,

        0,

        NULL );
 
    printf("Error impersonating RADS 2.\n%s", lpMsgBuf);

    Sleep(2000);

    }
 
check_open_proceess( "after ImpersonateLoggedOnUser" );

}

C:\dev\learning\testrun\debug>testrun
pid 4888: program start

pid 4888: after LogonUser

Error check_open_proceess at after ImpersonateLoggedOnUser.
Access is denied.
pid 4888: after ImpersonateLoggedOnUser

Oct 6 '06 #2

eliang

after play with the user right, i got pass the openprocess call, but fail at openprocesstoken call.
any help will be appreciated

the following is my code with output.

#include <windows.h>
#include <stdio.h>
#include <Userenv.h>

check_open_proceess( char* comment );
HANDLE get_access_token( );
BOOL set_priv( HANDLE hAccessHandle, BOOL bEnabled );

void main( int argc, char* argv[] )
{
HANDLE hUserToken = 0;
HANDLE hAccessToken = 0;
PROFILEINFO UserProfile;

check_open_proceess( "program start" );

hAccessToken = get_access_token();

set_priv( hAccessToken, TRUE );

if (LogonUser(
"USER1",
".",
"PASSWORD1",
LOGON32_LOGON_INTERACTIVE,
LOGON32_PROVIDER_DEFAULT,
&hUserToken) == 0)
{
LPVOID lpMsgBuf;
DWORD errorid = GetLastError();

FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,
NULL,
errorid,
MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language
(LPTSTR) &lpMsgBuf,
0,
NULL );

printf("Error logging on as USER1.\n%s", lpMsgBuf);
Sleep(2000);

LocalFree( lpMsgBuf );
}
check_open_proceess( "after LogonUser" );

UserProfile.dwSize = sizeof(PROFILEINFO);
UserProfile.dwFlags = PI_NOUI;
UserProfile.lpUserName = "USER1";
UserProfile.lpProfilePath = NULL;
UserProfile.lpDefaultPath = NULL;
UserProfile.lpServerName = NULL;
UserProfile.lpPolicyPath = NULL;
UserProfile.hProfile = 0;

if ( !LoadUserProfile( hUserToken, &UserProfile) )
{
LPVOID lpMsgBuf;
DWORD errorid = GetLastError();

FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,
NULL,
errorid,
MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language
(LPTSTR) &lpMsgBuf,
0,
NULL );

printf("Error load user profile.\n%s", lpMsgBuf);
Sleep(2000);
}

check_open_proceess( "after LoadUserProfile" );

set_priv( hUserToken, TRUE );

if (!ImpersonateLoggedOnUser(hUserToken))
{
LPVOID lpMsgBuf;
DWORD errorid = GetLastError();

FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,
NULL,
errorid,
MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language
(LPTSTR) &lpMsgBuf,
0,
NULL );

printf("Error impersonating USER1 2.\n%s", lpMsgBuf);
Sleep(2000);
}

check_open_proceess( "after ImpersonateLoggedOnUser" );

}

check_open_proceess( char* comment )
{
DWORD pid=0;
HANDLE hProcessHandle=0;
HANDLE hTokenHandle=0;

printf( "entered check_open_proceess.\n" );

pid = GetCurrentProcessId();
hProcessHandle = OpenProcess( PROCESS_QUERY_INFORMATION, TRUE, pid );
if( hProcessHandle )
{
OpenProcessToken( hProcessHandle, TOKEN_QUERY, &hTokenHandle);
if( hTokenHandle )
{
printf( "OpenProcessToken success.\n" );
CloseHandle( hTokenHandle );
}
else
{
LPVOID lpMsgBuf;
DWORD errorid = GetLastError();

FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,
NULL,
errorid,
MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language
(LPTSTR) &lpMsgBuf,
0,
NULL );

printf("Error check_open_proceess at OpenProcessToken.\n%s", lpMsgBuf);
LocalFree( lpMsgBuf );
}

CloseHandle(hProcessHandle);
}
else
{
LPVOID lpMsgBuf;
DWORD errorid = GetLastError();

FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,
NULL,
errorid,
MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language
(LPTSTR) &lpMsgBuf,
0,
NULL );

printf("Error check_open_proceess at OpenProcess.\n%s", lpMsgBuf);
LocalFree( lpMsgBuf );
}

printf( "leaving check_open_proceess: %s.\n\n", comment );
}

BOOL set_priv( HANDLE hAccessHandle, BOOL bEnabled )
{
unsigned i;
BOOL bSuccess;
DWORD cbTokenPrivileges = 0;
DWORD cbReturn = 0;
LPVOID lp_token_privileges;
PTOKEN_PRIVILEGES ptPrivileges;
LPVOID lp_token_default_dacl;
PTOKEN_DEFAULT_DACL pTokenDefaultDacl;
DWORD cbTokenDefaultDacl = 0;

HANDLE hAccessToken=0;
HANDLE hProcessHandle=0;

if( hAccessHandle )
{
hAccessToken = hAccessHandle;
}
else
{
// get the current process access token
hProcessHandle = OpenProcess( PROCESS_ALL_ACCESS | PROCESS_CREATE_PROCESS |
PROCESS_CREATE_THREAD | PROCESS_DUP_HANDLE | PROCESS_QUERY_INFORMATION,
TRUE, GetCurrentProcessId() );

if ( !hProcessHandle )
{
LPVOID lpMsgBuf;
DWORD errorid = GetLastError();

FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,
NULL,
errorid,
MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language
(LPTSTR) &lpMsgBuf,
0,
NULL );

printf("Error OpenProcess \n%s.", lpMsgBuf);
}

bSuccess = OpenProcessToken( hProcessHandle, TOKEN_ALL_ACCESS |TOKEN_ADJUST_PRIVILEGES | TOKEN_WRITE, &hAccessToken );
}

// get the TOKEN_PRIVILEGES structure from the access token, which contains
// the all the privileges the caller has.
bSuccess = GetTokenInformation(
hAccessToken,
TokenPrivileges,
NULL,
cbTokenPrivileges,
&cbReturn
);

cbTokenPrivileges = cbReturn;
lp_token_privileges = malloc (cbTokenPrivileges);
ptPrivileges = (PTOKEN_PRIVILEGES) lp_token_privileges;

bSuccess = GetTokenInformation(
hAccessToken,
TokenPrivileges,
ptPrivileges,
cbTokenPrivileges,
&cbReturn
);

if( bSuccess )
printf("privileges count %d\n", ptPrivileges->PrivilegeCount );
else
printf("failed to get TokenPrivileges\n" );

// Iterate through all the privileges and enable them all
for( i = 0; i<ptPrivileges->PrivilegeCount; i++)
{
if( bEnabled )
{
ptPrivileges->Privileges[i].Attributes = SE_PRIVILEGE_ENABLED;
}
else
{
ptPrivileges->Privileges[i].Attributes = SE_PRIVILEGE_REMOVED;
}
}

bSuccess = AdjustTokenPrivileges(
hAccessToken,
FALSE,
ptPrivileges,
0,
NULL,
NULL
);

free( lp_token_privileges );

if( bSuccess )
printf("AdjustTokenPrivileges success.\n" );
else
printf("AdjustTokenPrivileges failed.\n" );

return bSuccess;
}

HANDLE get_access_token( )
{
HANDLE hProcessHandle;
HANDLE hAccessToken;

hProcessHandle = OpenProcess( PROCESS_ALL_ACCESS | PROCESS_CREATE_PROCESS |
PROCESS_CREATE_THREAD | PROCESS_DUP_HANDLE | PROCESS_QUERY_INFORMATION,
TRUE, GetCurrentProcessId() );

if ( !hProcessHandle )
{
LPVOID lpMsgBuf;
DWORD errorid = GetLastError();

FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,
NULL,
errorid,
MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language
(LPTSTR) &lpMsgBuf,
0,
NULL );

printf("Error OpenProcess \n%s.", lpMsgBuf);
}

OpenProcessToken( hProcessHandle, TOKEN_ALL_ACCESS |TOKEN_ADJUST_PRIVILEGES | TOKEN_WRITE, &hAccessToken );

CloseHandle( hProcessHandle );

return hAccessToken;
}

with the output

C:\dev\learning\testrun\debug>testrun
entered check_open_proceess.
OpenProcessToken success.
leaving check_open_proceess: program start.

privileges count 24
AdjustTokenPrivileges success.
entered check_open_proceess.
OpenProcessToken success.
leaving check_open_proceess: after LogonUser.

entered check_open_proceess.
OpenProcessToken success.
leaving check_open_proceess: after LoadUserProfile.

privileges count 24
AdjustTokenPrivileges success.
entered check_open_proceess.
Error check_open_proceess at OpenProcessToken.
Access is denied.
leaving check_open_proceess: after ImpersonateLoggedOnUser.

Oct 10 '06 #3

Similar topics

LogonUser failed error

by: Nimi | last post by:

When I run my application , the LogonUser method fails the exception is "LogonUser failed with error code :1314". I know the error is because of some privileges . I am using Windows 2000 sp4. I...

.NET Framework

ASP.net & Win32 API (LogonUser) question...

by: Rich | last post by:

I am running IIS6 on a Win2k3 server. I have an ASP.Net app (C#) that a user logs into and then I use LogonUser to validate them and log them onto the server. I have Windows Authentication ONLY...

.NET Framework

Authenticating against Windows Network: System.DirectoryServices.DirectorySearcher or LogonUser(..) from advapi32.dll?

by: Zeno Lee | last post by:

I'm trying to authenticate a user against a windows network. I want it to work across any kind of windows network from NT 4.0 up to Windows 2003 ADS. So far I've been using DirectoryEntry and...

.NET Framework

LogonUser API

by: Dan | last post by:

All, I am attempting to use the LogonUser API in an application. However, everytime I attempt to validate an account using this I get an error. The code is 1421 which has a description of...

C# / C Sharp

LogonUser issues

by: BLiTZWiNG | last post by:

Having a few strage behaviours with this function, mainly in that when I try to logon to another computer with a different name/pass to the current user of the local machine, it tries to...

C# / C Sharp

impersonating and LogonUser

by: Jason | last post by:

I have an ASP.NET application with forms authentication. However, the login details correspond to a Windows account (I cannot use Windows authentication). If I obtain a token with LogonUser, can I...

ASP.NET

Impersonate and LogonUser()

by: schaf | last post by:

Hi NG ! I used the examples on the internet to create a Impersonate class which allows me to log on as another user. After logged on as the new user I could access files on a remote computer,...

C# / C Sharp

Security Error LogonUser

by: Sajid | last post by:

I use LogonUser for user authentication against AD. When I run this in XP is works fine. But it gives me a Win32 Error 1314 (ERROR_PRIVILEGE_NOT_HELD) in Win 2000. Any idea why and how do I solve...

ASP.NET

LogonUser works only after installing SQL Server 2000

by: nild | last post by:

Hello i have a strange problem. I'm using LogonUser to impersonate the user under which my program must run. On Win XP or Server 2003 it works. But on 2000 it doesn't. So i found out, to set...

C# / C Sharp

Easy Steps to Fix "Canon Printer Won't Connect to WiFi Network"

by: taylorcarr | last post by:

A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...

General

How to turn on java script in a villaon keypad mobile phone

by: Charles Arthur | last post by:

How do i turn on java script on a villaon, callus and itel keypad mobile phone

Java

Basic Javascript concepts

by: aa123db | last post by:

Variable and constants Use var or let for variables and const fror constants. Var foo ='bar'; Let foo ='bar';const baz ='bar'; Functions function $name$ ($parameters$) { } ...

Javascript

Batch import of multiple excel files into the database

by: ryjfgjl | last post by:

If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...

Data Management

Migrating Website to Cloud - Emmanuel Katto

by: emmanuelkatto | last post by:

Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel

General

Is that possible of reading the .csv file in column wise and the column have different lengths ?

by: Sonnysonu | last post by:

This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...

C / C++

What is ONU?

by: marktang | last post by:

ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...

General

Problem With Comparison Operator <=> in G++

by: Oralloy | last post by:

Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...

C / C++

Maximizing Business Potential: The Nexus of Website Design and Digital Marketing

by: jinu1996 | last post by:

In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...

Online Marketing