ansible

Author SHA1 Message Date

Author	SHA1	Message	Date
Jordan Borean	cc5088c9e1	win become - fix token elevation issues This is an implementation of `8bffcf8e50` that was done in the PR https://github.com/ansible/ansible/pull/48082 to devel. The changes have been manually brought across to the the stable-2.7 branch as it cannot be cleanly cherry picked due to the substantial differences in become between these versions. Currently we impersonate the `SYSTEM` token in order to elevate our become process with the highest privileges it has available but there are some edge cases where the first `SYSTEM` token we come across doesn't have the `SeTcbPrivilege` which is required for the above. This PR adds a further check in the search for a `SYSTEM` token to make sure it has the `SeTcbPrivilege` before continuing.	2019-02-11 18:21:23 -08:00

Jordan Borean

cc5088c9e1

win become - fix token elevation issues

This is an implementation of 8bffcf8e50
that was done in the PR https://github.com/ansible/ansible/pull/48082 to devel.
The changes have been manually brought across to the the stable-2.7 branch as it
cannot be cleanly cherry picked due to the substantial differences in become
between these versions.

Currently we impersonate the `SYSTEM` token in order to elevate our become
process with the highest privileges it has available but there are some edge
cases where the first `SYSTEM` token we come across doesn't have the
`SeTcbPrivilege` which is required for the above. This PR adds a further check
in the search for a `SYSTEM` token to make sure it has the `SeTcbPrivilege`
before continuing.

2019-02-11 18:21:23 -08:00

1 commit