Is it possible to save Windows NT credentials to reuse them later?

I have a testing program through which employees can submit JAR files to be executed. This is obviously a security concern, and it gets even worse as the executables have to be trusted since they normally need to access enterprise data.

To that end, I was wondering if it was, at least, possible to use the Windows account of the employee sending the JAR to execute it instead of some surrogate account. Is it somehow possi开发者_如何学Goble? What would it imply?

You might want to look into the SSPI functionality of Windows, which may allow you to transparently transfer an authentication token so that you can execute the JAR in the context of the user.

Unless you submit the credentials of the user passing in the JAR file, the saved credential wil not work later on. You might be able to execute it immediately, as long as the sending machine and executing machine are one hop away. Otherwise, the credential will not travel any farther.