Microsoft Internet Security and Acceleration Server 2000


The impersonator object holds user information so that the Firewall service can impersonate the user.

Impersonators must be implemented as in-process servers.

Methods in Vtable Order

IUnknown Methods Description
QueryInterface Returns pointers to supported interfaces.
AddRef Increments the reference count.
Release Decrements the reference count.

IImpersonator Methods Description
Impersonate Impersonates the user's account.
RevertToSelf Undoes impersonation.


This interface is implemented by the application filter.


Impersonators are typically implemented by the Firewall service, as in the case when the service is performing an access check. This holds true for sessions that were created by the Firewall service. When a session has been created by a filter by using the IFWXFirewall::CreatePrivateSession method, impersonation is performed by the application filter on behalf of the Firewall service through IFWXImpersonator.

Impersonators can also be implemented by filters that hold user credentials and are designed to function as application gateways. A filter implements IFWXImpersonator by using IFWXSession::ImpersonateClient and IFWXSession::RevertToSelf.


  Windows NT/2000: Requires Windows 2000.
  Version: Requires ISA Server 2000.
  Header: Wspfwext.idl.

See Also