Re: [PATCH v2 0/1] MR3505: ntdll: Implement NtCreateToken().

Right, it requires SE_CREATE_TOKEN_PRIVILEGE, which is not assigned by default. You'd need to assign it to the Administrators group for example (using the policy editor) and reboot. Then elevate and run the test.

I guess part of it could be tested indirectly via LogonUser(). When I looked into it this picture emerged:

LogonUser() calls LsaLogonUser() which looks up the authentication provider, calls its LsaLogonUser() method and creates a token using returned token info.

It sounds like you are proposing to create a standalone test. I used https://github.com/cubiclesoft/createprocess-windows as a test.