Reputation: 13830
Why can't I use PowerShell's Start-Process with both -Credential and -Verb parameters?
Using powershell.exe, I want to emulate cmd.exe's runas command with the additional benefit of escalating privileges through UAC.
However, if I both supply both -Credential and -Verb Runas parameters to Start-Process, I get the error below:
Start-Process powershell.exe -Credential (New-Object -TypeName System.Management.Automation.PSCredential -ArgumentList 'username',(ConvertTo-SecureString 'password' -AsPlainText -Force)) -ArgumentList '-NoProfile' -Verb RunAs
Start-Process : Parameter set cannot be resolved using the specified named parameters.
At line:1 char:1
+ Start-Process powershell.exe -Credential (New-Object -TypeName System ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidArgument: (:) [Start-Process], ParameterBindingException
+ FullyQualifiedErrorId : AmbiguousParameterSet,Microsoft.PowerShell.Commands.StartProcessCommand
Using only one of these parameters yields no errors:
Start-Process -Verb RunAs powershell.exe -ArgumentList "-NoProfile"
Why is that? Both syntax forms of Start-Process accept [<CommonParameters>], which -Verb Runas belongs to?
Upvotes: 5
Views: 2184
Answers (1)
Reputation: 23355
The -Verb parameter is only available in one of the parameter sets (if you do Get-Help Start-Process you can see it explictly listed in the second set):
SYNTAX
Start-Process [-FilePath] <String> [[-ArgumentList] <String[]>] [-Credential <PSCredential>] [-LoadUserProfile] [-NoNewWindow] [-PassThru] [-RedirectStandardError <String>] [-RedirectStandardInput <String>] [-RedirectStandardOutput <String>] [-UseNewEnvironment] [-Wait] [-WindowStyle {Normal | Hidden | Minimized | Maximized}] [-WorkingDirectory <String>]
[<CommonParameters>]
Start-Process [-FilePath] <String> [[-ArgumentList] <String[]>] [-PassThru] [-Verb <String>] [-Wait] [-WindowStyle {Normal | Hidden | Minimized | Maximized}] [-WorkingDirectory <String>] [<CommonParameters>]
It's not a part of CommonParameters, that just includes things like -Debug, -Verbose, -ErrorAction etc. (see the full list here).
This seems to be a possible workaround:
Start-Process powershell -Credential mydomain\myuser -ArgumentList '-noprofile -command &{Start-Process powershell -verb runas}'
Upvotes: 5
Related Questions
- Powershell: Start-Process doesn't pass arguments to cmd.exe
- Powershell: Start-Process with an argument
- powershell start-process doesn't accept two commands in ArgumentList because they have a same parameter
- PowerShell Start-Process with -ArgumentList doesn't work
- Start-process raises an error when providing Credentials - possible bug
- Why can't I use Start-Process to invoke a script with parameters?
- Powershell Start-Process -NoNewWindow not working with -Credentials
- Start-Process powershell credentials don't work but when using cmd it does
- Passing variable arguments using PowerShell's Start-Process cmdlet
- Accessing output from Start-Process with -Credential parameter