RandomInsano

Asked: 2017-12-21 09:12:26 +0800 CST2017-12-21 09:12:26 +0800 CST 2017-12-21 09:12:26 +0800 CST

`runas` without password for hundreds of users

I'm working with a tool that runs programs on behalf of hundreds users on multiple machines. This works fine on Linux because I can just run as "root" and use su or sudo to impersonate them without a password.

On Windows, runas has the "/savecred" option, but that won't help if there are hundreds of machines and hundreds of users. Typing 10,000 passwords that I should not know just isn't going to happen.

On the accounting side, this work should be done by the user who requested it so becoming their account is the right thing to do.

Now, I was under the impression that there was an ACL that could be applied to an account that would allow it to run a process as another user without requiring a password. Has anyone heard of this? I've dug around here already and no such luck.

If there is, how do you set it up and can I make use of runas or do I have to write a C/C++ app to make my own tool?

Thanks!

`runas` without password for hundreds of users

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

`runas` without password for hundreds of users

0 Answers