When is SeTcbPrivilege used? ("Act as part of the operating system").

Question

When is SeTcbPrivilege used? ("Act as part of the operating system").

For what purposes is the privilege used SeTcbPrivilegein Windows? Can it be used, for example, to run a program under the SYSTEM account?

+3

winapi privileges

Mehrdad Mar 14 '11 at 2:36

source share

2 answers

To add to Gabe's answer, here's what MS says,

Allows a process to accept the identity of any user and thus gain access to resources to which the user has the right to access. Typically, only low-level authentication services require this privilege.
Default value: not assigned.
, , ; , . , .
, , . .

: Microsoft TechNet

+2

judoman 03 . '12 16:22

Gabe · Accepted Answer · 2011-03-14T02:42:27+0000

By acting as part of the operating system, you can do something like create login tokens. It is unlikely that you will ever need to write a service that uses this privilege if you are not writing an authentication provider.

Since you can create access tokens, you can act like any user. Of course, this means that you can run programs under the SYSTEM account, but there are much simpler ways to run something like SYSTEM.

When is SeTcbPrivilege used? ("Act as part of the operating system").

More articles: