Location: Symbol Reference > Classes > TJwSecurityToken Class
|
|
Name |
Description |
 |
This is the overview for the Create constructor overload. | |
|
|
CreateCompatibilityQueryUserToken is a compatibility constructor for CreateWTSQueryUserToken which does not work in Windows 2000 (only Terminal Server). It creates a token of the current logged on user. This constructor seeks a process of the user and gets its token. It only works in the same (terminal) session of the process. | |
 |
This is the overview for the CreateDuplicateExistingToken constructor overload. | |
|
|
Please refer to the MSDN documentation : http://msdn.microsoft.com/en-us/library/aa378184%28VS.85%29.aspx | |
|
|
CreateNewToken forges a new token using ZwCreateToken. This function can only be called successfully when the CREATE_TOKEN privilege is available and the current process it the SYSTEM user. If the current process is a SYSTEM process but the CREATE_TOKEN privilege is missing, retrieve the token from the csrss.exe (session 0) impersonate it and call CreateNewToken. In this way, no restart of Windows is necessary which would be because you had to add the privilege to the SYSTEM account. | |
|
|
This is the overview for the CreateRestrictedToken constructor overload. | |
|
|
CreateTokenByProcess creates a new instances and opens a process token. To open a token of another session rather than the current session the current process token must be the SYSTEM token. Only the access right TOKEN_READ can be used with an admin token. If parameter aDesiredAccess is MAXIMUM_ALLOWED and the right READ_CONTROL is not granted the value of the property AccessMask is zero. Otherwise it contains all granted rights for the token. If you do not specify TOKEN_DUPLICATE, you will get direct access to the target process' token. Therefore you can change the behaviour of the process by changing enabled... more | |
|
|
CreateTokenByProcessId retrieves the token by using a ProcessID. The token of the given process will be duplicated into the current process so maximum access is granted. If the right TOKEN_DUPLICATE is set in parameter DesiredAccess, the token is duplicated. With this option, in special situations, the new current process can have more access rights on the token than the process specified by ProcessID. If you do not specify TOKEN_DUPLICATE, you will get direct access to the target process' token. Therefore you can change the behaviour of the process by changing enabled privileges. This does not affect an impersonation of the... more | |
|
|
CreateTokenByThread creates a new class instance and opens a thread token if available; otherwise it fails. | |
|
|
CreateTokenEffective opens a token of the current thread or process. If it can't open the thread token it opens the process token instead. | |
|
|
CreateWTSQueryUserToken opens a token of a logged on user. This constructor is only present on Windows XP/2003 or higher systems. This call fails if the thread does not have system privileges (belong to system). Enable SE_TCB_NAME privilege for none system principals. This token can be used to get a token from the specified user in a terminal session (also Fast User Switching). For example: This token is necessary to call CreateProcessAsUser to lunch a process in the given terminal session. | |
|
|
CreateWTSQueryUserTokenEx opens a token of a logged on user on a local or remote server. This constructor can be used in Windows 2000 Terminal Server in contrary to CreateWTSQueryUserToken. | |
|
|
This is Destroy, a member of class TJwSecurityToken. |
|
Copyright (c) 2010. All rights reserved.
This help was created by Doc-O-Matic sponsored by toolsfactory software inc. |
