user rights

Tutorials Win: Microsoft Windows Forum

hello all

does windows ce have the same user rights mechanism as windows? user
rights, security groups, user profiles etc. Can I, for example, create a
user for the windows ce that can access only several applications, can't
delete certain folders etc?


thank you,
christina

I'm sorry for sendign this message to 2 groups, but both seem
appropriate for my question.
Top

Re: user rights by Valter

Valter
Thu Apr 12 06:26:26 CDT 2007

Christina Androne <christina.androne@gmail.com> wrote in
news:OBOZE3OfHHA.1220@TK2MSFTNGP03.phx.gbl:

> hello all
>
> does windows ce have the same user rights mechanism as windows?
> user rights, security groups, user profiles etc. Can I, for
> example, create a user for the windows ce that can access only
> several applications, can't delete certain folders etc?

No, Windows CE don't provide this kind of access rights.
You may build a filesystem filter that interacts with an external
component to find who's logged in and what operation are allowed for
that user, but it will require some code, it's not that difficult to
bypass and can't be used to secure execution of applications that
are part of your OS image, AFAIK.
In CE 5.0 you can implement some OAL function to prevent some
modules from loading or giving them limited access to "dangerous"
APIs, but this is not based on user authentication and you'll have
to provide some mechanism to integrate that. In CE 6.0 this
mechanism has been changed and so you'll have to check wich version
of CE you need to support and maybe provide a "compatibility" layer
if you plan to migrate from 5.0 to newer releases.

--
Valter Minute
(the reply address of this message is invalid)
(l'indirizzo di reply di questo messaggio non è valido)
Top

Re: user rights by Ross

Ross
Fri Apr 20 15:45:43 CDT 2007

An overview of the CE6 security model can be found here:
http://blogs.msdn.com/ce_base/archive/2007/01/02/ce6-module-security.aspx

-Ross

"Valter Minute" <v_a_l_t_e_r.m_i_n_u_t_e@g_m_a_i_l.com> wrote in message
news:Xns991088B9A2877VALTERMINUTE@207.46.248.16...
> Christina Androne <christina.androne@gmail.com> wrote in
> news:OBOZE3OfHHA.1220@TK2MSFTNGP03.phx.gbl:
>
>> hello all
>>
>> does windows ce have the same user rights mechanism as windows?
>> user rights, security groups, user profiles etc. Can I, for
>> example, create a user for the windows ce that can access only
>> several applications, can't delete certain folders etc?
>
> No, Windows CE don't provide this kind of access rights.
> You may build a filesystem filter that interacts with an external
> component to find who's logged in and what operation are allowed for
> that user, but it will require some code, it's not that difficult to
> bypass and can't be used to secure execution of applications that
> are part of your OS image, AFAIK.
> In CE 5.0 you can implement some OAL function to prevent some
> modules from loading or giving them limited access to "dangerous"
> APIs, but this is not based on user authentication and you'll have
> to provide some mechanism to integrate that. In CE 6.0 this
> mechanism has been changed and so you'll have to check wich version
> of CE you need to support and maybe provide a "compatibility" layer
> if you plan to migrate from 5.0 to newer releases.
>
> --
> Valter Minute
> (the reply address of this message is invalid)
> (l'indirizzo di reply di questo messaggio non è valido)

Top