Service Running on Hyper-V Virtual Machine

-

hello,

i have service application when starting creates windows station/desktop environment , runs process in it. perform following steps, done under local system. (this done in c#.)

  • log on user , load user profile want run process under.
  • set session user logon token 1.
  • create window station, switch current station new, , add interactive desktop.
  • add ace new window station , desktop allowing logged on user full access.
  • impersonate logged in user.
  • create environment block process.
  • run process using createprocessas
  • after unload user profile, revert user self , window station.

the application service starts attempts create system.threading.semaphore following code:

bool created = false;
semaphoresecurity semsec = new semaphoresecurity();
semaphoreaccessrule rule = new semaphoreaccessrule(usersid, semaphorerights.fullcontrol, accesscontroltype.allow);
semsec.addaccessrule(rule);
using (system.threading.semaphore lsemp = new system.threading.semaphore(0, 1, eventid + "_done", out created, semsec))
{

// stuff

}

i have tested code on windows 2003, windows 2008,  vista, windows 7, , windows 2012 , works fine when installed on box or using vmware virtual machine. had test on hyper-v virtual machine fails following error.

[10/28/2013 09:21:23](1776): myprocess => starting new thread process.
[10/28/2013 09:21:23](1776): myprocess => exception caught.
[10/28/2013 09:21:23](1776): myprocess => access port denied.
[10/28/2013 09:21:23](1776): myprocess =>    at system.io.ports.internalresources.winioerror(int32 errorcode, string str)
   at system.threading.semaphore..ctor(int32 initialcount, int32 maximumcount, string name, boolean& creatednew, semaphoresecurity semaphoresecurity)
   at myprocess(object parameter)

so far exception on windows 2008 64b r2, have tested , windows 2012. have tried using worldsid semaphore access rule, local admin account logged on user, , given local admin account permission act operating system. same exception. 

other items of note:

  • only happens named system objects, eventwaithandles , wcf named pipes well. (a non-named semaphore can created.)
  • i able create system objects if run application in session 0.

anyone have idea why might be?

people lurk in forum tend not c programmers - more hyper-v administrators , powershell or wmi.  yes, may still keep hands in programming, going have more luck getting questions answered in msdn forum

.:|:.:|:. tim



Windows Server  >  Hyper-V



Comments

Post a Comment

Popular posts from this blog

WIMMount (HSM) causing cluster storage to go redirected (2012r2 DC)

-
looking options resolve error , prevent in future. thanks help. hardware: 2 node dell hv cluster running2012r2 dc 8 nic/ea in multiplex mode 4x hyper-v 4x hosts storage: 2x synology nas, accessed through iscsi hosts , cluster relevant logs: log name:      microsoft-windows-failoverclustering/diagnostic source:        microsoft-windows-failoverclustering date:          event id:      2050 task category: none level:         warning keywords:       user:          system computer:      l description: [dcm] filter wimmount found @ unsafe altitude 180700 log name:      system source:        microsoft-windows-failoverclustering date:         event id:      5125 task category: cluster shared volume level:         warning keywords:       user:          system computer: description: cluster shared volume 'volume1' ('cluster disk 1') has identified 1 or more active filter drivers on device stack interfere csv operatio
Read more

Failed to delete the test record dcdiag-test-record in zone test.com

-
ps c:\users\administrator.test> dcdiag /test:dns directory server diagnosis performing initial setup:    trying find home server...    home server = dc02    * identified ad forest.    done gathering initial info. doing initial required tests    testing server: default-first-site-name\dc02       starting test: connectivity          ......................... dc02 passed test connectivity doing primary tests    testing server: default-first-site-name\dc02       starting test: dns          dns tests running , not hung. please wait few minutes...          ......................... dc02 passed test dns    running partition tests on : forestdnszones    running partition tests on : domaindnszones    running partition tests on : schema    running partition tests on : configuration    running partition tests on : test    running enterprise tests on : test.com       starting test: dns          test results domain
Read more

Azure MFA with Azure AD and RDS

-
i have setup following lab in azure , need help. a server (domain controller) , remote desktop services. and server multi factor authentication server. i have setup following one http://www.rdsgurus.com/uncategorized/step-by-step-using-windows-server-2012-r2-rd-gateway-with-azure-multifactor-authentication/ and when im connecting got following error. the user "domain\username", on client computer "xxx.xxx.xxx.xxx", did not meet connection authorization policy requirements , therefore not authorized access rd gateway server. authentication method used was: "ntlm" , connection protocol used: "rpc-http". following error occurred: "23003". also on security log i've got following authentication details: connection request policy name: ts gateway authorization policy network policy name: - authentication provider: radius proxy authentication server: test.test.local authentication type: - eap t
Read more