Search
Module:
Directory

   Desktop Functions:

   Smart Device Functions:


Show Recent Changes
Subscribe (RSS)
Misc. Pages
Comments
FAQ
Helpful Tools
Playground
Suggested Reading
Website TODO List
Download Visual Studio Add-In

DuplicateToken (advapi32)
 
.
Summary
Duplicates a NT authentication token.

C# Signature:

[DllImport("advapi32.dll", SetLastError=true)]
public extern static bool DuplicateToken(IntPtr ExistingTokenHandle, int
   SECURITY_IMPERSONATION_LEVEL, out IntPtr DuplicateTokenHandle);

VB .NET Signature:

Declare Function DuplicateToken Lib "advapi32.dll" (ExistingTokenHandle As IntPtr, _
   SECURITY_IMPERSONATION_LEVEL As SecurityImpersonationLevel, ByRef DuplicateTokenHandle As IntPtr) _
   As Boolean

VB .NET User-Defined Types:

Public Enum SecurityImpersonationLevel As Integer
     'The server process cannot obtain identification information about the client,
     'and it cannot impersonate the client. It is defined with no value given, and thus,
     'by ANSI C rules, defaults to a value of zero.
     SecurityAnonymous = 0

     'The server process can obtain information about the client, such as security identifiers and privileges,
     'but it cannot impersonate the client. This is useful for servers that export their own objects,
     'for example, database products that export tables and views.
     'Using the retrieved client-security information, the server can make access-validation decisions without
     'being able to use other services that are using the client's security context.
     SecurityIdentification = 1

     'The server process can impersonate the client's security context on its local system.
     'The server cannot impersonate the client on remote systems.
     SecurityImpersonation = 2

     'The server process can impersonate the client's security context on remote systems.
     'NOTE: Windows NT:  This impersonation level is not supported.
     SecurityDelegation = 3
End Enum

C# User Defined Types:

public enum SecurityImpersonationLevel : int
        {
            /// <summary>
            /// The server process cannot obtain identification information about the client,
            /// and it cannot impersonate the client. It is defined with no value given, and thus,
            /// by ANSI C rules, defaults to a value of zero.
            /// </summary>
            SecurityAnonymous = 0,

            /// <summary>
            /// The server process can obtain information about the client, such as security identifiers and privileges,
            /// but it cannot impersonate the client. This is useful for servers that export their own objects,
            /// for example, database products that export tables and views.
            /// Using the retrieved client-security information, the server can make access-validation decisions without
            /// being able to use other services that are using the client's security context.
            /// </summary>
            SecurityIdentification = 1,

            /// <summary>
            /// The server process can impersonate the client's security context on its local system.
            /// The server cannot impersonate the client on remote systems.
            /// </summary>
            SecurityImpersonation = 2,

            /// <summary>
            /// The server process can impersonate the client's security context on remote systems.
            /// NOTE: Windows NT:  This impersonation level is not supported.
            /// </summary>
            SecurityDelegation = 3,
        }

Notes:

None.

Tips & Tricks:

Please add some!

Sample Code:

Please add some!

Alternative Managed API:

TODO

Documentation

Please edit this page!

Do you have...

  • helpful tips or sample code to share for using this API in managed code?
  • corrections to the existing content?
  • variations of the signature you want to share?
  • additional languages you want to include?

Select "Edit This Page" on the right hand toolbar and edit it! Or add new pages containing supporting types needed for this API (structures, delegates, and more).

 
Access PInvoke.net directly from VS:
Terms of Use
Find References
Show Printable Version
Revisions