I was asked if we had implemented LsaLogonUser – the function from hell. Yes, we did. You can find it in the online documation @ JwsclLsa.TJwSecurityLsa.LsaLogonUser (Unit.Class.Method). LsaLogonUser and JwsclToken.TJwSecurityToken.CreateNewToken are not documented at the moment. However: These functions should only used for a really good reason. Otherwise the system security can be breached.