Windows API - Win32
A core set of Windows application programming interfaces (APIs) for desktop and server applications. Previously known as Win32 API.
2,427 questions
OpenSCManager API failed with AccessDenied for Remote Computer
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(227.2, 60%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENR%3C/text%3E%3C/svg%3E)
Navaneeth R
21
Reputation points
Hi,
While trying to establish a connection to the Service Control Manager on Remote Computer using OpenSCManagerA( ), it's failed with Access Denied.
This API succeeds when I execute this command with user session. When I run this command with SYSTEM session, it fails.
https://learn.microsoft.com/en-us/windows/win32/api/winsvc/nf-winsvc-openscmanagera
In the above document, the following is mentioned
"To connect to a service remotely, call the LogonUser function with LOGON32_LOGON_NEW_CREDENTIALS and then call ImpersonateLoggedOnUser before calling OpenSCManager."
As mentioned above, I tried impersonating as Domain Admin with LOGON32_LOGON_NEW_CREDENTIALS before calling OpenSCManagerA( ) API. But still it is failed with Access denied error.
Tried enabling and disabling UAC on Remote computer, uninstalled Anti Virus on source machine and remote machine, no software restriction policy configured.
But still no luck.
This issue occurs only on Windows 10 machines!
Is there anyway to execute OpenSCManager API in SYSTEM session? Could anyone help me?
Thanks and Regards,
Navaneeth R
Windows API - Win32
C++
C++
A high-level, general-purpose programming language, created as an extension of the C programming language, that has object-oriented, generic, and functional features in addition to facilities for low-level memory manipulation.
3,540 questions
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 34%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXY%3C/text%3E%3C/svg%3E)
Xiaopo Yang - MSFT 11,501 Reputation points Microsoft Vendor2021-09-07T09:44:20.367+00:00 Is
the Domain Adminin the local Windows Admin group on the remote node? -
Navaneeth R 21 Reputation points
2021-09-07T10:50:11.657+00:00 It is the Active Directory Domain Admin account.
I believe, this Domain Admin user can able to perform all kind of operations on remote machine. -
Xiaopo Yang - MSFT 11,501 Reputation points Microsoft Vendor
2021-09-08T05:39:43.98+00:00 OK. Could you please show a minimal, reproducible sample without private information?
Sign in to comment