在vb.net中以不同用户身份运行新进程
我目前正在使用一种自己开发的方法在Vista中以另一个用户的身份运行一个进程,我无法逃避这种感觉,那就是它有点黑客味,不太理想(此外,它会破坏UAC,导致我的应用程序出现安全异常,并迫使我完全禁用UAC)。我的流程由两个项目(即两个EXE文件)“接口”和“启动存根”组成,流程如下:在vb.net中以不同用户身份运行新进程,vb.net,impersonation,runas,security-context,startprocessinfo,Vb.net,Impersonation,Runas,Security Context,Startprocessinfo,我目前正在使用一种自己开发的方法在Vista中以另一个用户的身份运行一个进程,我无法逃避这种感觉,那就是它有点黑客味,不太理想(此外,它会破坏UAC,导致我的应用程序出现安全异常,并迫使我完全禁用UAC)。我的流程由两个项目(即两个EXE文件)“接口”和“启动存根”组成,流程如下: 用户有一个启动“Interface.exe notepad.exe”的快捷方式 Interface.exe有一个表单,要求提供他们想要使用的凭据 Interace.exe使用ProcessStartInfo创建Lau
更新:我刚试过在网上找到的,但没用。与ProcessStartInfo结合使用时,它似乎仍然使用我当前的登录名启动进程,而不是我提供的登录名,即使我使用提供的凭据激活了模拟。您可以尝试从应用程序运行runas。一些示例和选项。您可能需要使用Win32 API创建自己的“shell”函数 使用CreateProcessWithLogonWAPI,您可以在不同凭据下创建新进程,并可以选择加载用户配置文件信息 在下面的代码段中,如果替换
- 用户名-使用您的用户名
- 域-使用域或“vbNullString”
- 密码-使用您的密码
- 参数4-将0替换为“使用配置文件登录”以加载指定的用户配置文件
Imports System.Runtime.InteropServices
Public Module modShell
<StructLayout(LayoutKind.Sequential)> _
Public Structure STARTUPINFO
Public cb As Integer
Public lpReserved As String
Public lpDesktop As String
Public lpTitle As String
Public dwX As Integer
Public dwY As Integer
Public dwXSize As Integer
Public dwYSize As Integer
Public dwXCountChars As Integer
Public dwYCountChars As Integer
Public dwFillAttribute As Integer
Public dwFlags As Integer
Public wShowWindow As Short
Public cbReserved2 As Short
Public lpReserved2 As Integer
Public hStdInput As Integer
Public hStdOutput As Integer
Public hStdError As Integer
End Structure
<StructLayout(LayoutKind.Sequential)> _
Public Structure PROCESS_INFORMATION
Public hProcess As IntPtr
Public hThread As IntPtr
Public dwProcessId As Integer
Public dwThreadId As Integer
End Structure
Public Declare Unicode Function CreateProcessWithLogonW Lib "Advapi32" (ByVal lpUsername As String, ByVal lpDomain As String, ByVal lpPassword As String, ByVal dwLogonFlags As Int32, ByVal lpApplicationName As String, ByVal lpCommandLine As String, ByVal dwCreationFlags As Int32, ByVal lpEnvironment As IntPtr, ByVal lpCurrentDirectory As String, ByRef si As STARTUPINFO, ByRef pi As PROCESS_INFORMATION) As Integer
Public Declare Function CloseHandle Lib "kernel32" (ByVal hObject As IntPtr) As Integer
Public Const LOGON_WITH_PROFILE As Int32 = &H1
Public Const NORMAL_PRIORITY_CLASS As Int32 = &H20&
Public Const STARTF_USESHOWWINDOW As Int32 = &H1
Public Const SW_HIDE As Int16 = 0
Public Const SW_SHOW As Int16 = 5
Public Function Shell(ByVal strCmdLine As String, ByVal strCurrentDirectory As String) As Boolean
Dim pi As PROCESS_INFORMATION
Dim si As New STARTUPINFO
si.cb = Marshal.SizeOf(si)
si.dwFlags = STARTF_USESHOWWINDOW
si.wShowWindow = SW_SHOW
Dim result As Integer = CreateProcessWithLogonW("username", "domain", "password", 0, vbNullString, strCmdLine, NORMAL_PRIORITY_CLASS, IntPtr.Zero, strCurrentDirectory, si, pi)
If result <> 0 Then
Call CloseHandle(pi.hThread)
Call CloseHandle(pi.hProcess)
Else
Return False
End If
Return True
End Function
End Module
导入System.Runtime.InteropServices
公共模块modShell
_
公共结构STARTUPINFO
作为整数的公共cb
公共LPS保留为字符串
公共桌面作为字符串
公共标题作为字符串
作为整数的公共dwX
作为整数的公共dwY
公共dwXSize为整数
公共数据以整数形式显示
作为整数的公共dwXCountChars
作为整数的公共dwYCountChars
公共dwFillAttribute为整数
作为整数的公共标志
公共窗口为短窗口
公共cbReserved2简称
公共lpReserved2为整数
公共HST输入为整数
公共HST输出为整数
公共hStdError为整数
端部结构
_
公共结构过程信息
公共hProcess作为IntPtr
作为IntPtr的公共hThread
作为整数的公共dwProcessId
作为整数的公共dwThreadId
端部结构
公共声明Unicode函数CreateProcessWithLogonW库“Advapi32”(ByVal lpUsername作为字符串,ByVal lpDomain作为字符串,ByVal lpPassword作为字符串,ByVal dwLogonFlags作为Int32,ByVal lpApplicationName作为字符串,ByVal lpCommandLine作为字符串,ByVal dwCreationFlags作为Int32,ByVal lpEnvironment作为IntPtr,ByVal lpCurrentDirectory作为字符串,ByRef si作为STARTUPINFO,ByRef pi作为进程信息)作为整数
将公共函数CloseHandle Lib“kernel32”(ByVal hObject作为IntPtr)声明为整数
公用常量登录,\u配置文件为Int32=&H1
公共常量正常\u优先级\u类为Int32=&H20&
Public Const STARTF_USESHOWWINDOW作为Int32=&H1
公共常数SW_隐藏为Int16=0
公共施工开关显示为Int16=5
作为布尔值的公共函数Shell(ByVal strCmdLine作为字符串,ByVal strCurrentDirectory作为字符串)
作为过程信息的Dim pi
Dim si作为新的STARTUPINFO
si.cb=Marshal.SizeOf(si)
si.dwFlags=STARTF\u USESHOWWINDOW
si.wShowWindow=SW\u SHOW
Dim结果为Integer=CreateProcessWithLogonNW(“用户名”、“域”、“密码”、0、vbNullString、strCmdLine、普通\u优先级\u类、IntPtr.Zero、strCurrentDirectory、si、pi)
如果结果为0,则
调用CloseHandle(pi.hThread)
调用CloseHandle(pi.hProcess)
其他的
返回错误
如果结束
返回真值
端函数
端模块
尝试此模块:
Module Impersonation
#Region "API Structures"
<StructLayout(LayoutKind.Sequential)> _
Public Structure PROCESS_INFORMATION
Dim hProcess As System.IntPtr
Dim hThread As System.IntPtr
Dim dwProcessId As Integer
Dim dwThreadId As Integer
End Structure
<StructLayout(LayoutKind.Sequential)> _
Public Structure STARTUPINFO
Dim cb As Integer
Dim lpReserved As System.IntPtr
Dim lpDesktop As System.IntPtr
Dim lpTitle As System.IntPtr
Dim dwX As Integer
Dim dwY As Integer
Dim dwXSize As Integer
Dim dwYSize As Integer
Dim dwXCountChars As Integer
Dim dwYCountChars As Integer
Dim dwFillAttribute As Integer
Dim dwFlags As Integer
Dim wShowWindow As Short
Dim cbReserved2 As Short
Dim lpReserved2 As System.IntPtr
Dim hStdInput As System.IntPtr
Dim hStdOutput As System.IntPtr
Dim hStdError As System.IntPtr
End Structure
#End Region
#Region "API Constants"
Private Const LOGON_NETCREDENTIALS_ONLY As Integer = &H2
Private Const NORMAL_PRIORITY_CLASS As Integer = &H20
Private Const CREATE_DEFAULT_ERROR_MODE As Integer = &H4000000
Private Const CREATE_NEW_CONSOLE As Integer = &H10
Private Const CREATE_NEW_PROCESS_GROUP As Integer = &H200
Private Const LOGON_WITH_PROFILE As Integer = &H1
#End Region
#Region "API Functions"
Private Declare Unicode Function CreateProcessWithLogon Lib "Advapi32" Alias "CreateProcessWithLogonW" _
(ByVal lpUsername As String, _
ByVal lpDomain As String, _
ByVal lpPassword As String, _
ByVal dwLogonFlags As Integer, _
ByVal lpApplicationName As String, _
ByVal lpCommandLine As String, _
ByVal dwCreationFlags As Integer, _
ByVal lpEnvironment As System.IntPtr, _
ByVal lpCurrentDirectory As System.IntPtr, _
ByRef lpStartupInfo As STARTUPINFO, _
ByRef lpProcessInfo As PROCESS_INFORMATION) As Integer
Private Declare Function CloseHandle Lib "kernel32" (ByVal hObject As System.IntPtr) As Integer
#End Region
Public Sub RunProgram(ByVal UserName As String, ByVal Password As String, ByVal Domain As String, ByVal Application As String, ByVal CommandLine As String)
Dim siStartup As STARTUPINFO
Dim piProcess As PROCESS_INFORMATION
Dim intReturn As Integer
If CommandLine Is Nothing OrElse CommandLine = "" Then CommandLine = String.Empty
siStartup.cb = Marshal.SizeOf(siStartup)
siStartup.dwFlags = 0
intReturn = CreateProcessWithLogon(UserName, Domain, Password, LOGON_WITH_PROFILE, Application, CommandLine, _
NORMAL_PRIORITY_CLASS Or CREATE_DEFAULT_ERROR_MODE Or CREATE_NEW_CONSOLE Or CREATE_NEW_PROCESS_GROUP, _
IntPtr.Zero, IntPtr.Zero, siStartup, piProcess)
If intReturn = 0 Then
Throw New System.ComponentModel.Win32Exception(Marshal.GetLastWin32Error())
End If
CloseHandle(piProcess.hProcess)
CloseHandle(piProcess.hThread)
End Sub
End Module
模块模拟
#区域“API结构”
_
公共结构过程信息
Dim HPPROCESS As System.IntPtr
Dim hThread As System.IntPtr
Dim dwProcessId为整数
将dwThreadId设置为整数
端部结构
_
公共结构STARTUPINFO
将cb设置为整数
Dim LPR保留为System.IntPtr
暗lpDe
this.Process = new Process();
this.Process.StartInfo.Arguments = "Arguments";
this.Process.StartInfo.FileName = "C:\your.exe";
this.Process.StartInfo.UserName = "UserName";
string password = "some password";
this.Process.StartInfo.Password.Clear();
foreach (char c in password)
{
this.Process.StartInfo.Password.AppendChar(c);
}
//allow the process to raise events
this.Process.EnableRaisingEvents = true;
this.Process.StartInfo.ErrorDialog = false;
//Method for handling the exit event
this.Process.Exited += new EventHandler(ApplicationProcess_Exited);
//Set the application directory as the current working directory
Environment.CurrentDirectory = System.IO.Directory.GetParent("C:\").ToString();
if (this.Process.Start())
{
// Do something on start
}