Why do you use logon type 9?
case num #07404925
-
shahn
- Influencer
- Posts: 18
- Liked: 2 times
- Joined: Sep 04, 2023 7:48 am
- Contact:
What is this? (window alert)
Is this a normal alarm?
Why do you use logon type 9?
case num #07404925
![Image]()
Why do you use logon type 9?
case num #07404925
-
david.domask
- Veeam Software
- Posts: 2823
- Liked: 645 times
- Joined: Jun 28, 2016 12:12 pm
- Contact:
Re: What is this? (window alert)
Hi shahn,
I see the same in my lab and I suspect it's just the Veeam.Backup.Manager's way of initiating connections with different credentials than it was started with (e.g., reaching a network share or guest processing)
However, allow me some time to confirm this and I will update once I have more information. Thanks!
I see the same in my lab and I suspect it's just the Veeam.Backup.Manager's way of initiating connections with different credentials than it was started with (e.g., reaching a network share or guest processing)
However, allow me some time to confirm this and I will update once I have more information. Thanks!
David Domask | Product Management: Principal Analyst
-
david.domask
- Veeam Software
- Posts: 2823
- Liked: 645 times
- Joined: Jun 28, 2016 12:12 pm
- Contact:
Re: What is this? (window alert)
@shahn, please excuse the delay on my response.
After an internal discussion, indeed these are normal events, and the logon type 9 is used when a process needs to communicate with another component.
The example my RND colleagues mentioned was consider adding a Windows server to Veeam as a repository; we add credentials, and later need to install components onto the Windows server. After connection and installation of our services, we need to communicate with the services, and this is where the impersonation logon comes into play as the Veeam.Backup.Manager process needs to communicate with the Deployment or Transport services for example.
There's more info in this article from Microsoft if you're interested, but the TL;DR is "it's expected and normal".
After an internal discussion, indeed these are normal events, and the logon type 9 is used when a process needs to communicate with another component.
The example my RND colleagues mentioned was consider adding a Windows server to Veeam as a repository; we add credentials, and later need to install components onto the Windows server. After connection and installation of our services, we need to communicate with the services, and this is where the impersonation logon comes into play as the Veeam.Backup.Manager process needs to communicate with the Deployment or Transport services for example.
There's more info in this article from Microsoft if you're interested, but the TL;DR is "it's expected and normal".
"This logon type allows the caller to clone its current token and specify new credentials for outbound connections. The new logon session has the same local identifier but uses different credentials for other network connections."
David Domask | Product Management: Principal Analyst
-
shahn
- Influencer
- Posts: 18
- Liked: 2 times
- Joined: Sep 04, 2023 7:48 am
- Contact:
Re: What is this? (window alert)
Thank you for your reply.
Who is online
Users browsing this forum: No registered users and 25 guests