R
Robert Ginsburg
One of the constructors for a WindowsIdentity allows you to pass the UPN of
a user and have an identity created for that user. If your permissions are
setup correctly then the system is supposed to return you a delegatable
token that you can use for impersonation. I have been attempting just this,
I have set my local account to have permission to act as part of the
operating system and have flaged it as trusted for delegation, however
whenever I use this function I get a System.Security exception with the
message "Incorrect Function", I get the exact same result if I call
LsaLogonUser using the Kerberos S4U format.
Any thoughts or advice are appreciated
Robert
a user and have an identity created for that user. If your permissions are
setup correctly then the system is supposed to return you a delegatable
token that you can use for impersonation. I have been attempting just this,
I have set my local account to have permission to act as part of the
operating system and have flaged it as trusted for delegation, however
whenever I use this function I get a System.Security exception with the
message "Incorrect Function", I get the exact same result if I call
LsaLogonUser using the Kerberos S4U format.
Any thoughts or advice are appreciated
Robert