Solved

CreateProcess for Currently Logged On User from Service running System Account?

Posted on 2004-03-24
6
3,527 Views
Last Modified: 2012-12-12
The problem I am having is this:

There is a service that runs using the Local System Account, it needs to run in this context to prevent users from closing it.  This service monitors an application that MUST always remain open, this application has to run as the currently logged on user.  When I use CreateProcess from within the service to restart the application if it has been terminated by the user, CreateProcess runs the application within the Local System Account, this creates a problem since the application must run in the users account for reasons I wont go into here.

Question:

How do I use CreateProcess to launch an instance of specified application from the Currently Logged On users account.  I do not want to enter username and password information by using LogOnUser because the currently logged on user is already authenticated I should not have to do this, also this is not an option since the user does not interact with this program.  I believe what I will need to use is ImpersonateLoggedOnUser, and obtaining the current users process handle by using OpenProcessToken but after messing with this for nearly 2 weeks now I cannot figure out how to get this to work...  Any help would be appreciated!!
0
Comment
Question by:Magadass
  • 3
  • 3
6 Comments
 
LVL 86

Accepted Solution

by:
jkr earned 500 total points
ID: 10668990
>>I believe what I will need to use is ImpersonateLoggedOnUser, and obtaining the
>>current users process handle by using OpenProcessToken

Indeed. E.g. like using

ImpersonateInteractiveUser()
{
   HANDLE hToken = NULL;                
   HANDLE hProcess = NULL;

   DWORD processID = GetExplorerProcessID();
   if( processID)
    {
    hProcess =
         OpenProcess(  
               PROCESS_ALL_ACCESS,
         TRUE,
          processID );

    if( hProcess)
        {
        if( OpenProcessToken(
                    hProcess,
              TOKEN_EXECUTE |
             TOKEN_READ |
             TOKEN_QUERY |
             TOKEN_ASSIGN_PRIMARY |
             TOKEN_QUERY_SOURCE |
             TOKEN_WRITE |
             TOKEN_DUPLICATE,
             &hToken))
        {
         ImpersonateLoggedOnUser( hToken);
          CloseHandle( hToken );
        }
        CloseHandle( hProcess );
    }
   }
}

Then, call 'CreateProcess()' to launch any application in the context of the logged on user and call 'RevertToSelf()'

BTW, 'GetExplorerProcessID();' can be implemented using http://support.microsoft.com/default.aspx?scid=http://support.microsoft.com:80/support/kb/articles/Q175/0/30.ASP&NoWebContent=1 ("HOWTO: Enumerate Applications Using Win32 APIs")
0
 
LVL 86

Expert Comment

by:jkr
ID: 10669196
0
 

Author Comment

by:Magadass
ID: 10669652
Is this sufficient jkr?

DWORD GetExplorerProcessID()
{
      HANDLE hSnapshot;
      PROCESSENTRY32 pe32;
      ZeroMemory(&pe32,sizeof(pe32));
      DWORD temp;

    hSnapshot = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS,NULL);
      
      pe32.dwSize = sizeof(PROCESSENTRY32);

      if(Process32First(hSnapshot,&pe32))
      {
            do
            {
                  if(!strcmp(pe32.szExeFile,"explorer.exe"))
                  {
                        MessageBox(0,pe32.szExeFile,"test",0);
                        temp = pe32.th32ProcessID;
                        break;
                  }

            }while(Process32Next(hSnapshot,&pe32));
      }
return temp;
}
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 

Author Comment

by:Magadass
ID: 10669761
Wow that worked great man...  Very awesome, thanks for your help you are da man!!!
0
 

Author Comment

by:Magadass
ID: 10669762
Wow that worked great man...  Very awesome, thanks for your help you are da man!!!
0
 
LVL 86

Expert Comment

by:jkr
ID: 10669800
You're welcome :o)

Sorry for the delay, but my notifs don't seem to be working...
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Suggested Solutions

This article shows you how to optimize memory allocations in C++ using placement new. Applicable especially to usecases dealing with creation of large number of objects. A brief on problem: Lets take example problem for simplicity: - I have a G…
Container Orchestration platforms empower organizations to scale their apps at an exceptional rate. This is the reason numerous innovation-driven companies are moving apps to an appropriated datacenter wide platform that empowers them to scale at a …
The viewer will learn additional member functions of the vector class. Specifically, the capacity and swap member functions will be introduced.
The viewer will learn how to clear a vector as well as how to detect empty vectors in C++.

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now