Managing Logon Sessions

One of the responsibilities of an authentication package is to create a logon session when a user's initial logon request is authenticated. Your authentication package can do this by calling the CreateLogonSession function. This function returns a logon identifier (LUID) that uniquely identifies the session.

If your authentication package created extraneous logon sessions while authenticating the user, it should delete them by calling DeleteLogonSession. If the authentication fails, your authentication package should delete all related logon sessions. Logon sessions consume kernel memory, so it is important to delete unused or discarded logon sessions.

The following topics provide information about enumerating and retrieving information from logon sessions.

Topic Description

Enumerating the Logon Sessions

Demonstrates using the LsaEnumerateLogonSessions function.

Retrieving Logon Session Information

Demonstrates using the LsaGetLogonSessionData function.

 

 

 

Send comments about this topic to Microsoft

Build date: 4/6/2010