以指定用户启动进程,指定用户启动进程
如何作为其他用户从 VisualBasic 启动进程
察看本文应用于的产品
注意:这篇文章是由无人工介入的自动的机器翻译系统翻译完成。这些文章是微软为不懂英语的用户提供的, 以使他们能够理解这些文章的内容。微软不保证机器翻译的正确度,也不对由于内容的误译或者客户对它的使用所引起的任何直接的, 或间接的可能的问题负责。
文章编号 : 285879
最后修改 : 2006年11月21日
修订 : 6.1
本页
概要
更多信息
Windows NT 4.0
Windows 2000 及更高版本
概要
本指南介绍如何作为其他用户从 Microsoft Visual Basic 编程启动进程。 进行此, 可使用 LogonUser 和 CreateProcessAsUser 是运行 Microsoft Windows NT 4.0, 计算机上 Win32API 或者使用 CreateProcessWithLogonW 是运行 Microsoft Windows 2000 计算机上 Win32API 或更高版本或更高版本。 无法从进程在 LocalSystem 帐户调用 CreateProcessWithLogonW 。
更多信息
本文包含示例 VisualBasic 代码检测的操作系统版本。 它然后使用相应 API 来启动进程作为其他用户。
Windows NT 4.0
要使用 LogonUser 和 CreateProcessAsUser , 呼叫用户帐户必须拥有某些权限。
要使用 LogonUser() , 呼叫用户帐户必须拥有下列权限: Permission Display Name
------------------------------------------------------------------
SE_TCB_NAME Act as part of the operating system
要使用 CreateProcessAsUser() , 呼叫用户帐户必须具有以下两种权限: Permission Display Name
------------------------------------------------------------
SE_ASSIGNPRIMARYTOKEN_NAME Replace a process level token
SE_INCREASE_QUOTA_NAME Increase quotas
如果呼叫用户帐户没有权限来充当属于操作系统, " " LogonUser() API 失败并生成返回值为零。 如果调用 Err.LastDllError , 收到错误信息 1314。 此消息表示, 由客户端不保留必需权限。 同样, 如果两呼叫用户帐户无权以 " 替换进程级令牌 ", 以增加配额, " " CreateProcessAsUser() API 失败并生成错误消息 1314。
如果以其他用户, 启动交互式应用程序必须对交互式窗口站和桌面上名 winsta0/default 访问。 如果应用程序是交互式, 调用方需要向 winsta0/default 编程添加所需权限。 此后, 调用方可调用 RunAsUser Helper 函数下面示例 VisualBasic 代码中。
您必须授予对用户帐户以便交互式应用程序可以成功启动 LogonUser() 中指定足够权限。 以下知识库文章有示例 VisualBasic 代码, 可用于更新窗口站和桌面上上权限。
316440 (http://support.microsoft.com/kb/316440/EN-US/) 如何使用 API 从 VisualBasic 低级访问控制
Windows 2000 及更高版本
Windows 2000 中引入 CreateProcessWithLogonW() API。 那样与 LogonUser 和 CreateProcessAsUser API 调用 CreateProcessWithLogonW() 不需要为调用用户帐户, 授予权限。
将来, 使用 CreateProcessWithLogonW() API。 它处理权限与继承窗口站和桌面上相关联。 在此方案, 应用程序只调用 RunAsUser Helper 函数如下示例 VisualBasic 代码中。 Option Explicit
Private Const CREATE_DEFAULT_ERROR_MODE = &H4000000
Private Const LOGON_WITH_PROFILE = &H1
Private Const LOGON_NETCREDENTIALS_ONLY = &H2
Private Const LOGON32_LOGON_INTERACTIVE = 2
Private Const LOGON32_PROVIDER_DEFAULT = 0
Private Type STARTUPINFO
cb As Long
lpReserved As Long ' !!! must be Long for Unicode string
lpDesktop As Long ' !!! must be Long for Unicode string
lpTitle As Long ' !!! must be Long for Unicode string
dwX As Long
dwY As Long
dwXSize As Long
dwYSize As Long
dwXCountChars As Long
dwYCountChars As Long
dwFillAttribute As Long
dwFlags As Long
wShowWindow As Integer
cbReserved2 As Integer
lpReserved2 As Long
hStdInput As Long
hStdOutput As Long
hStdError As Long
End Type
Private Type PROCESS_INFORMATION
hProcess As Long
hThread As Long
dwProcessId As Long
dwThreadId As Long
End Type
' LogonUser() requires that the caller has the following permission
' Permission Display Name
' --------------------------------------------------------------------
' SE_TCB_NAME Act as part of the operating system
' CreateProcessAsUser() requires that the caller has the following permissions
' Permission Display Name
' ---------------------------------------------------------------
' SE_ASSIGNPRIMARYTOKEN_NAME Replace a process level token
' SE_INCREASE_QUOTA_NAME Increase quotas
Private Declare Function LogonUser Lib "advapi32.dll" Alias _
"LogonUserA" _
(ByVal lpszUsername As String, _
ByVal lpszDomain As String, _
ByVal lpszPassword As String, _
ByVal dwLogonType As Long, _
ByVal dwLogonProvider As Long, _
phToken As Long) As Long
Private Declare Function CreateProcessAsUser Lib "advapi32.dll" _
Alias "CreateProcessAsUserA" _
(ByVal hToken As Long, _
ByVal lpApplicationName As Long, _
ByVal lpCommandLine As String, _
ByVal lpProcessAttributes As Long, _
ByVal lpThreadAttributes As Long, _
ByVal bInheritHandles As Long, _
ByVal dwCreationFlags As Long, _
ByVal lpEnvironment As Long, _
ByVal lpCurrentDirectory As String, _
lpStartupInfo As STARTUPINFO, _
lpProcessInformation As PROCESS_INFORMATION) As Long
' CreateProcessWithLogonW API is available only on Windows 2000 and later.
Private Declare Function CreateProcessWithLogonW Lib "advapi32.dll" _
(ByVal lpUsername As String, _
ByVal lpDomain As String, _
ByVal lpPassword As String, _
ByVal dwLogonFlags As Long, _
ByVal lpApplicationName As Long, _
ByVal lpCommandLine As String, _
ByVal dwCreationFlags As Long, _
ByVal lpEnvironment As Long, _
ByVal lpCurrentDirectory As String, _
ByRef lpStartupInfo As STARTUPINFO, _
ByRef lpProcessInformation As PROCESS_INFORMATION) As Long
Private Declare Function CloseHandle Lib "kernel32.dll" _
(ByVal hObject As Long) As Long
Private Declare Function SetErrorMode Lib "kernel32.dll" _
(ByVal uMode As Long) As Long
Private Type OSVERSIONINFO
dwOSVersionInfoSize As Long
dwMajorVersion As Long
dwMinorVersion As Long
dwBuildNumber As Long
dwPlatformId As Long
szCSDVersion As String * 128
End Type
' Version Checking APIs
Private Declare Function GetVersionExA Lib "kernel32.dll" _
(lpVersionInformation As OSVERSIONINFO) As Integer
Private Const VER_PLATFORM_WIN32_NT = &H2
'********************************************************************
' RunAsUser for Windows 2000 and Later
'********************************************************************
Public Function W2KRunAsUser(ByVal UserName As String, _
ByVal Password As String, _
ByVal DomainName As String, _
ByVal CommandLine As String, _
ByVal CurrentDirectory As String) As Long
Dim si As STARTUPINFO
Dim pi As PROCESS_INFORMATION
Dim wUser As String
Dim wDomain As String
Dim wPassword As String
Dim wCommandLine As String
Dim wCurrentDir As String
Dim Result As Long
si.cb = Len(si)
wUser = StrConv(UserName + Chr$(0), vbUnicode)
wDomain = StrConv(DomainName + Chr$(0), vbUnicode)
wPassword = StrConv(Password + Chr$(0), vbUnicode)
wCommandLine = StrConv(CommandLine + Chr$(0), vbUnicode)
wCurrentDir = StrConv(CurrentDirectory + Chr$(0), vbUnicode)
Result = CreateProcessWithLogonW(wUser, wDomain, wPassword, _
LOGON_WITH_PROFILE, 0&, wCommandLine, _
CREATE_DEFAULT_ERROR_MODE, 0&, wCurrentDir, si, pi)
' CreateProcessWithLogonW() does not
If Result <> 0 Then
CloseHandle pi.hThread
CloseHandle pi.hProcess
W2KRunAsUser = 0
Else
W2KRunAsUser = Err.LastDllError
MsgBox "CreateProcessWithLogonW() failed with error " & Err.LastDllError, vbExclamation
End If
End Function
'********************************************************************
' RunAsUser for Windows NT 4.0
'********************************************************************
Public Function NT4RunAsUser(ByVal UserName As String, _
ByVal Password As String, _
ByVal DomainName As String, _
ByVal CommandLine As String, _
ByVal CurrentDirectory As String) As Long
Dim Result As Long
Dim hToken As Long
Dim si As STARTUPINFO
Dim pi As PROCESS_INFORMATION
Result = LogonUser(UserName, DomainName, Password, LOGON32_LOGON_INTERACTIVE, _
LOGON32_PROVIDER_DEFAULT, hToken)
If Result = 0 Then
NT4RunAsUser = Err.LastDllError
' LogonUser will fail with 1314 error code, if the user account associated
' with the calling security context does not have
' "Act as part of the operating system" permission
MsgBox "LogonUser() failed with error " & Err.LastDllError, vbExclamation
Exit Function
End If
si.cb = Len(si)
Result = CreateProcessAsUser(hToken, 0&, CommandLine, 0&, 0&, False, _
CREATE_DEFAULT_ERROR_MODE, _
0&, CurrentDirectory, si, pi)
If Result = 0 Then
NT4RunAsUser = Err.LastDllError
' CreateProcessAsUser will fail with 1314 error code, if the user
' account associated with the calling security context does not have
' the following two permissions
' "Replace a process level token"
' "Increase Quotoas"
MsgBox "CreateProcessAsUser() failed with error " & Err.LastDllError, vbExclamation
CloseHandle hToken
Exit Function
End If
CloseHandle hToken
CloseHandle pi.hThread
CloseHandle pi.hProcess
NT4RunAsUser = 0
End Function
Public Function RunAsUser(ByVal UserName As String, _
ByVal Password As String, _
ByVal DomainName As String, _
ByVal CommandLine As String, _
ByVal CurrentDirectory As String) As Long
Dim w2kOrAbove As Boolean
Dim osinfo As OSVERSIONINFO
Dim Result As Long
Dim uErrorMode As Long
' Determine if system is Windows 2000 or later
osinfo.dwOSVersionInfoSize = Len(osinfo)
osinfo.szCSDVersion = Space$(128)
GetVersionExA osinfo
w2kOrAbove = _
(osinfo.dwPlatformId = VER_PLATFORM_WIN32_NT And _
osinfo.dwMajorVersion >= 5)
If (w2kOrAbove) Then
Result = W2KRunAsUser(UserName, Password, DomainName, _
CommandLine, CurrentDirectory)
Else
Result = NT4RunAsUser(UserName, Password, DomainName, _
CommandLine, CurrentDirectory)
End If
RunAsUser = Result
End Function
--------------------------------------------------------------------------------
小鱼文聚评论