Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Security/Privileges for App spawned from Service 1

Status
Not open for further replies.
tgreer

tgreer

Programmer
Oct 4, 2002
1,781
US
This is a re-hash of a previous posting, with greater specificity.

I get the following error:

An unhandled exception of type 'System.IO.DirectoryNotFoundException' occurred in mscorlib.dll

Additional information: Could not find a part of the path "z:\".
Click to expand...

The code that causes the error:

Code: 
if (!Directory.Exists(sack_destination + tape_name))
{
Directory.CreateDirectory(sack_destination + tape_name);
}

"sack_destination" is a string that equates to "z:\mer". This is a mapped drive, a network share.

The code is contained in a Console Application, which is launched from a Windows Service application using System.Diagnostics.Process.Start.

I have tried running the service under the LocalSystem account, and as a local user account with Administrative + "run as service" privileges. The same error in each case.

I also tried running the service under NetworkResource account, but the service failed to start, with no specific error message, so I'm not sure what the problem is there.

The error does NOT occur when I manually run or debug the Console application.

What privileges are needed in order for an application spawned by a service to access network resources? Can those privileges be granted programmatically? In other words, can the service launch the process with specific credentials? If so, how (code snippet)?

Thomas D. Greer

Providing PostScript & PDF
Training, Development & Consulting
 
Sort by date Sort by votes
Well, I'll just answer my own question, for the benefit of any who encounter the same issue.

Drive Mapping.

Services essentially create their own "Login Context", and the same hold true for the processes they spawn. Thus, the LocalSystem account doesn't have access to the drive mappings available to any particular user.


Answer: Use UNC paths instead of drive mappings. Also, the service must log on as a user account with rights to those shares, instead of LocalSystem.



Thomas D. Greer

Providing PostScript & PDF
Training, Development & Consulting
 
Upvote 0 Downvote
Helpful information (even though you answered your own question!). Deserves a star.
 
Upvote 0 Downvote
I don't know if anyone will read this since the original thread was so long ago...

I have a related question for tgreer:

I am trying to accomplish the same thing, but without using UNC paths. If the original share is read/write for everybody, and I map a drive letter to the share, will this solution work if my service logs on as any user account?

Or, is my only hope to use UNC paths?

Thanks for any help. If I don't get a reply soon, I guess I'll just repost.
 
Upvote 0 Downvote
Yah, but I thought you might have the answer already ;-)

Thanks anyway.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

NoCoolHandle
  • Locked
  • Question
working with SQL "FOR JSON AUTO
Replies
2
Views
915
NoCoolHandle
NoCoolHandle
hoangluc19
  • Locked
  • Question
Load data from database to Datagridview C#
Replies
0
Views
824
hoangluc19
hoangluc19
JScannell
  • Locked
  • Question
Square credit card payments for desktop application
Replies
4
Views
305
gbaughma
gbaughma
WomanPro
  • Locked
  • Question
TextBox of user control NavigationBar gives flickering during reducting the height of the form.
Replies
0
Views
685
WomanPro
WomanPro
IlyaRabyy
  • Locked
  • Question
"Server Error in '/' Application. Keyword not supported: 'provider'."
Replies
1
Views
371
IlyaRabyy
IlyaRabyy

Part and Inventory Search

Sponsor

Back
Top