Export (0) Print
Expand All
Expand Minimize

ImpersonateSelf function

The ImpersonateSelf function obtains an access token that impersonates the security context of the calling process. The token is assigned to the calling thread.

Syntax


BOOL WINAPI ImpersonateSelf(
  _In_  SECURITY_IMPERSONATION_LEVEL ImpersonationLevel
);

Parameters

ImpersonationLevel [in]

Specifies a SECURITY_IMPERSONATION_LEVEL enumerated type that supplies the impersonation level of the new token.

Return value

If the function succeeds, the return value is nonzero.

If the function fails, the return value is zero. To get extended error information, call GetLastError.

Remarks

The ImpersonateSelf function is used for tasks such as enabling a privilege for a single thread rather than for the entire process or for changing the default discretionary access control list (DACL) for a single thread.

The server can call the RevertToSelf function when the impersonation is complete.

For this function to succeed, the DACL protecting the process token must grant the TOKEN_DUPLICATE right to itself.

Requirements

Minimum supported client

Windows XP [desktop apps only]

Minimum supported server

Windows Server 2003 [desktop apps only]

Header

Winbase.h (include Windows.h)

Library

Advapi32.lib

DLL

Advapi32.dll

See also

Client/Server Access Control Overview
Client/Server Access Control Functions
DuplicateToken
ImpersonateNamedPipeClient
RevertToSelf
SECURITY_IMPERSONATION_LEVEL

 

 

Community Additions

ADD
Show:
© 2014 Microsoft