Microsoft Active Directory
utilizes an Impersonation Token
which is an access token that has been created to capture the security information of a client process, allowing a server to "impersonate
" the client process in security operations.
There might be more information for this subject on one of the following: