Click here to Skip to main content
15,892,161 members
Search within:


Response to: LogonUser method and the administrative privilegies

Revision 1
Is it for local Users or in a Windows-Domain?

May you just use the administrator for executing some methods?

C#
private bool doSomeThingWithAdministrativePrivilegs()
        {
            IntPtr token;

            if (!NativeMethods.LogonUser(
                <$user>, //Administrator or User with administrativ privilegs
                <$domain>, //if no domain avalible set computername System.Environment.MachineName it was i think .ToString()...
                <$password>,
                NativeMethods.LogonType.NewCredentials,
                NativeMethods.LogonProvider.Default,
                out token))
            {
                throw new Win32Exception();
            }

            try
            {
                IntPtr tokenDuplicate;

                if (!NativeMethods.DuplicateToken(
                    token,
                    NativeMethods.SecurityImpersonationLevel.Impersonation,
                    out tokenDuplicate))
                {
                    throw new Win32Exception();
                }

                try
                {
                    using (WindowsImpersonationContext impersonationContext =
                        new WindowsIdentity(tokenDuplicate).Impersonate())
                    {
                        // DO the stuff privilegs needed in here...
                    }
                }
                finally
                {
                    if (tokenDuplicate != IntPtr.Zero)
                    {
                        if (!NativeMethods.CloseHandle(tokenDuplicate))
                        {
                            return false;
                            //throw new Win32Exception();
                        }
                    }
                }
            }
            finally
            {
                if (token != IntPtr.Zero)
                {
                    if (!NativeMethods.CloseHandle(token))
                    {
                        return false;
                        //throw new Win32Exception();
                    }
                }
            }
            return true;
        }
Posted 11-Aug-11 3:11am by diialer.
Tags:
  Print Answers RSS
Top Experts
Last 24hrsThis month
Related Questions
LogonUser method and the administrative privilegies
Javascript code to. - Display the name of administrator logged in - ensure you can logout
How to use LogonUser in VC++ ?
Logonuser and createprocessasuser interactive from service
normal user with administrator privileges checker by c#
starting a process using logonUser and createProcessAsUser api
How to launch an application with elevated administrator account privilege from windows service even if the account has not yet logon
How to run .bat file as administrator in C# code
log in by administrator
How to I create an administrative share that can be seen in file properties

Advertise
Privacy
Cookies
Terms of Use
Last Updated 5 Nov 2009
Layout: fixed | fluid
Copyright © CodeProject, 1999-2024
All Rights Reserved.

Web04 2.8:2024-04-02:1