Re: Impersonation Question

Thanks Steven,
I had a feeling that was what you were going to say. Thanks for the info.

-Ryan




"Steven Cheng[MSFT]" <stcheng@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:UoGA5k$pHHA.1032@xxxxxxxxxxxxxxxxxxxxxxxxx
Hi Ryan,

For LogonUser API, it can only take the following kind of accounts as
input:

**a local account of the local machine

**a domain account of the domain this machine belong to

You can not call logonUser API against a local account on another remote
machine.

for your scenario, if the two machines are not in the same windows
domain(can not use domain account), you still have the following options:

1. create two duplicated account(with identical username, password ) on
both machines. Thus, you can call LogonUser api against
"computer1\username" on computer1, and when you access computer2, it will
autoamtically map your security context to "computer2\username" account

2. If what you want to access remotely is only NTFS fileshare, you can
create a mapped drive on computer1(linked to a share folder on computer2),
thus, you can provide the credential info(of an account on computer2) in
the mapped drive setting.

How do you think?

Sincerely,

Steven Cheng

Microsoft MSDN Online Support Lead



==================================================

Get notification to my posts through email? Please refer to
http://msdn.microsoft.com/subscriptions/managednewsgroups/default.aspx#notif
ications.



Note: The MSDN Managed Newsgroup support offering is for non-urgent issues
where an initial response from the community or a Microsoft Support
Engineer within 1 business day is acceptable. Please note that each follow
up response may take approximately 2 business days as the support
professional working with you may need further investigation to reach the
most efficient resolution. The offering is not appropriate for situations
that require urgent, real-time or phone-based interactions or complex
project analysis and dump analysis issues. Issues of this nature are best
handled working with a dedicated Microsoft Support Engineer by contacting
Microsoft Customer Support Services (CSS) at
http://msdn.microsoft.com/subscriptions/support/default.aspx.

==================================================


This posting is provided "AS IS" with no warranties, and confers no
rights.




.

Relevant Pages

  • Re: Can SSAS 2005 work in Novell network?
    ... windows account which was used to log on to the local machine. ... the server to the relevant OLAP roles you should be good to go. ... Microsoft Online Community Support ... where an initial response from the community or a Microsoft Support ...
    (microsoft.public.sqlserver.olap)
  • RE: sp_attach_db on Vista causes read only problems
    ... this issue could occur if the SQL Server service ... You may try to use "local system" account as startup ... Microsoft Online Community Support ... where an initial response from the community or a Microsoft Support ...
    (microsoft.public.sqlserver.setup)
  • RE: 32bit app turns into 64bit in Windows Service
    ... I've changed to both an AD account and the Network Service account, ... will make the process running without the "*32" in the Task Manager. ... Microsoft Online Community Support ... where an initial response from the community or a Microsoft Support ...
    (microsoft.public.dotnet.general)
  • Re: NT AUTHORITYNetwork Service cant write to .NET Directory?
    ... ASP.NET process identity(the IIS worker process account), ... Here are two articles introduce setup the proper permissions for ASP.NET ... Microsoft MSDN Online Support Lead ... where an initial response from the community or a Microsoft Support ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Product ID For Online Support
    ... >Not sure about support for the Home Use program since it ... >account will be deleted without reading. ... As I mentioned in my thread, OE and Outlook ...
    (microsoft.public.office.misc)