I have created an ASP.Net application which impersonates the user in order to create an AD group, and then launches a powershell process as the user (separately from the impersonation).
For some reason the group creation works fine and shows as success in the Event Viewer, but when it tries to run the PowerShell script, I get the following error:
The user has not been granted the requested logon type at this machine.
The following is the code I am using which is failing:
SecureString securePassword = new SecureString(); foreach (char c in model.AdminPassword) { securePassword.AppendChar(c); } PSCredential psCredential = new PSCredential("CONTOSO\\" + User.Identity.Name, securePassword); ProcessStartInfo info = new ProcessStartInfo("c:\\Windows\\system32\\WindowsPowerShell\\v1.0\\powershell.exe", "c:\\PowershellScripts\\EnableDL.ps1 -dlName '" + model.Name + "'"); info.UseShellExecute = false; info.RedirectStandardOutput = true; info.RedirectStandardError = true; info.RedirectStandardInput = true; info.CreateNoWindow = true; info.Domain = "CONTOSO.COM"; info.UserName = User.Identity.Name; info.Password = securePassword;Is there any way to bypass this error? I would rather not fiddle with the security policy on the server ideally, and this application needs to be used by around 30+ users.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
- Home
- Advisories
- SecurID
- SecurID Governance & Lifecycle
- Documentation
- SecurID
- Authentication Agents
- API / SDK
- Apache Web Server
- Citrix StoreFront
- Epic Hyperdrive
- IIS Web Server
- MFA Agent for macOS
- MFA Agent for Windows
- Microsoft AD FS
- Microsoft Windows
- PAM
- Authentication Engine
- Authentication Manager
- Authenticators
- iOS and Android
- macOS
- Windows
- Cloud Authentication Service
- Hardware Appliance
Component Updates - Hardware Tokens
- Integrations
- SecurID SDK
- Software Tokens
- Android
- iOS
- macOS
- Token Converter
- Windows
- Authentication Agents
- SecurID Governance & Lifecycle
- Technology Partners
- SecurID
- Downloads
- SecurID
- Authentication Agents
- API / SDK
- Apache Web Server
- Citrix StoreFront
- Epic Hyperdrive
- IIS Web Server
- MFA Agent for macOS
- MFA Agent for Windows
- Microsoft AD FS
- Microsoft Windows
- PAM
- Authentication Engine
- Authentication Manager
- Authenticators
- macOS
- Windows
- Cloud Authentication Service
- FIDO Management Service
- Hardware Appliance
Component Updates - Hardware Tokens
- Integrations
- Software Tokens
- Android
- iOS
- macOS
- Token Converter
- Windows
- Authentication Agents
- SecurID Governance & Lifecycle
- SecurID
- Community
- SecurID
- Blog
- Discussions
- Events
- Idea Exchange
- Knowledge Base
- SecurID Governance & Lifecycle
- Blog
- Discussions
- Events
- Idea Exchange
- Knowledge Base
- SecurID
- Support
- Case Portal
- Create New Case
- View My Cases
- View My Team's Cases
- Community Support
- Getting Started
- News & Announcements
- Ideas & Suggestions
- Community Support Articles
- Community Support Forum
- Product Life Cycle
- Support Information
- General Security Advisories
- Case Portal
- Education
- Blog
- Browse Courses
- SecurID
- SecurID Governance & Lifecycle
- Certification Program
- New Product Readiness
- Student Resources
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search instead for
Did you mean:
SecurID® Discussions
Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
- SecurID Community
- Products
- SecurID
- Discussions
- Logon Failure: The user has not been granted the requested logon type for this computer
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
- All forum topics
- Previous Topic
- Next Topic
1 Reply
Sounds like a windows or domain issue....GPO or Domain group or policy issue not specifically RSA agent.
Check windows event viewer for the 4 digit error code and/or disable the RSA challenge and can user log in
without the RSA agent ?
Search the internet for that exact error message and a lot of Microsoft and other articles discuss why that can happen.