I'm thinking about designing a client server system where user credentials are use to control access to information on the server. I would like to use windows security to do this. I would like the client to pass the user token to the server where it would verify the users membership using groups.

How would I pass the user token from a client process on one computer to the server process on another? Is there a way this could happen in the background of the (Windows) OSes? I am not using IIS or SAP.

Thoughts on where to start?

Solutions that use "IsInRole" a bonus!