(Msg. 1) Posted: Wed Aug 06, 2008 9:05 am
Post subject: Unique Windows XP Authentication Add to elertz Archived from groups: microsoft>public>windowsxp>security_admin (more info?)
hi,
I need some help to do the following: i want to use a unique
authentication/logon process for Windows XP (instead of the
original Windows logon). This means that before the logon
dialog box appears i want to use my own authentication mechanism
(It uses USB drive as a hardware key, in combination with free
software tools and asymmetric cryptography with a radius server.)
If the authentication fails, /for example no USB drive/ the
original logon dialog box should appear.
Well, some of the main questions are i think:
- how can i execute my own logon application before the windows
logon dialog box appears? (maybe as a service??)
- if the logon succeed, how can i step over the original logon
dialog box and go straight to the desktop?
(Msg. 2) Posted: Wed Aug 06, 2008 1:47 pm
Post subject: Re: Unique Windows XP Authentication Add to elertz [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Why do you want to do this? Is there something wrong with the existing
choices? Writing your own authentication method is rarely a good idea. It's
some of the most difficult code to write securely.
Help me understand your business or technical need; perhaps I can suggest an
alternative that doesn't require replacing a fundamental component of the
operating system.
"3iron3" <3iron3.RemoveThis@discussions.microsoft.com> wrote in message
news:9BDD2EA3-B6C6-43C7-8B68-69931B9C2DF2@microsoft.com...
> hi,
>
> I need some help to do the following: i want to use a unique
> authentication/logon process for Windows XP (instead of the
> original Windows logon). This means that before the logon
> dialog box appears i want to use my own authentication mechanism
> (It uses USB drive as a hardware key, in combination with free
> software tools and asymmetric cryptography with a radius server.)
> If the authentication fails, /for example no USB drive/ the
> original logon dialog box should appear.
>
> Well, some of the main questions are i think:
> - how can i execute my own logon application before the windows
> logon dialog box appears? (maybe as a service??)
> - if the logon succeed, how can i step over the original logon
> dialog box and go straight to the desktop?
>
> thx any help in advance
(Msg. 3) Posted: Thu Aug 07, 2008 12:01 am
Post subject: Re: Unique Windows XP Authentication Add to elertz [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Well, i'm a student&part of a project in the university where this is the
main problem. But now i know that i should wite my own gina. i hope i can do
this but i'm afraid it won't be easy...
have a nice day
"Steve Riley [MSFT]" wrote:
> Why do you want to do this? Is there something wrong with the existing
> choices? Writing your own authentication method is rarely a good idea. It's
> some of the most difficult code to write securely.
>
> Help me understand your business or technical need; perhaps I can suggest an
> alternative that doesn't require replacing a fundamental component of the
> operating system.
>
> --
> Steve Riley
> steve.riley DeleteThis @microsoft.com
> http://blogs.technet.com/steriley > http://www.protectyourwindowsnetwork.com >
>
>
> "3iron3" <3iron3 DeleteThis @discussions.microsoft.com> wrote in message
> news:9BDD2EA3-B6C6-43C7-8B68-69931B9C2DF2@microsoft.com...
> > hi,
> >
> > I need some help to do the following: i want to use a unique
> > authentication/logon process for Windows XP (instead of the
> > original Windows logon). This means that before the logon
> > dialog box appears i want to use my own authentication mechanism
> > (It uses USB drive as a hardware key, in combination with free
> > software tools and asymmetric cryptography with a radius server.)
> > If the authentication fails, /for example no USB drive/ the
> > original logon dialog box should appear.
> >
> > Well, some of the main questions are i think:
> > - how can i execute my own logon application before the windows
> > logon dialog box appears? (maybe as a service??)
> > - if the logon succeed, how can i step over the original logon
> > dialog box and go straight to the desktop?
> >
> > thx any help in advance
>
(Msg. 4) Posted: Thu Aug 07, 2008 12:30 am
Post subject: Re: Unique Windows XP Authentication Add to elertz [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Add your USB-detection code in place of the logon GUI.
"3iron3" wrote:
> Well, i'm a student&part of a project in the university where this is the
> main problem. But now i know that i should wite my own gina. i hope i can do
> this but i'm afraid it won't be easy...
>
(Msg. 5) Posted: Thu Aug 07, 2008 1:14 am
Post subject: Re: Unique Windows XP Authentication Add to elertz [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
ty, this must be very helpful to me
"Anteaus" wrote:
>
>
> Here's one I made earlier:
>
> http://mylogon.net >
> Add your USB-detection code in place of the logon GUI.
>
> "3iron3" wrote:
>
> > Well, i'm a student&part of a project in the university where this is the
> > main problem. But now i know that i should wite my own gina. i hope i can do
> > this but i'm afraid it won't be easy...
> >
>
(Msg. 6) Posted: Thu Aug 07, 2008 8:09 pm
Post subject: Re: Unique Windows XP Authentication Add to elertz [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Hm, strange assignment, and actually doesn't have much value these days. The
GINA is deprecated; it's no longer used in Windows Vista or Windows Server
2008 and will not be used in any future version of Windows. I'd recommend
you have your instructor reconsider the assignment.
"3iron3" <3iron3.RemoveThis@discussions.microsoft.com> wrote in message
news:D504C2FC-2652-4C07-9044-C1DF6A8D820E@microsoft.com...
> Well, i'm a student&part of a project in the university where this is the
> main problem. But now i know that i should wite my own gina. i hope i can
> do
> this but i'm afraid it won't be easy...
>
> have a nice day
>
>
> "Steve Riley [MSFT]" wrote:
>
>> Why do you want to do this? Is there something wrong with the existing
>> choices? Writing your own authentication method is rarely a good idea.
>> It's
>> some of the most difficult code to write securely.
>>
>> Help me understand your business or technical need; perhaps I can suggest
>> an
>> alternative that doesn't require replacing a fundamental component of the
>> operating system.
>>
>> --
>> Steve Riley
>> steve.riley.RemoveThis@microsoft.com
>> http://blogs.technet.com/steriley >> http://www.protectyourwindowsnetwork.com >>
>>
>>
>> "3iron3" <3iron3.RemoveThis@discussions.microsoft.com> wrote in message
>> news:9BDD2EA3-B6C6-43C7-8B68-69931B9C2DF2@microsoft.com...
>> > hi,
>> >
>> > I need some help to do the following: i want to use a unique
>> > authentication/logon process for Windows XP (instead of the
>> > original Windows logon). This means that before the logon
>> > dialog box appears i want to use my own authentication mechanism
>> > (It uses USB drive as a hardware key, in combination with free
>> > software tools and asymmetric cryptography with a radius server.)
>> > If the authentication fails, /for example no USB drive/ the
>> > original logon dialog box should appear.
>> >
>> > Well, some of the main questions are i think:
>> > - how can i execute my own logon application before the windows
>> > logon dialog box appears? (maybe as a service??)
>> > - if the logon succeed, how can i step over the original logon
>> > dialog box and go straight to the desktop?
>> >
>> > thx any help in advance
>>
(Msg. 7) Posted: Fri Aug 08, 2008 2:37 am
Post subject: Re: Unique Windows XP Authentication Add to elertz [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Well, first of all, thx for the reply
So, if GINA is not used in Vista then what is?
Is it possible to do the same thing in Vista & if it is, how?
thx in advance
"Steve Riley [MSFT]" wrote:
> Hm, strange assignment, and actually doesn't have much value these days. The
> GINA is deprecated; it's no longer used in Windows Vista or Windows Server
> 2008 and will not be used in any future version of Windows. I'd recommend
> you have your instructor reconsider the assignment.
>
> --
> Steve Riley
> steve.riley.DeleteThis@microsoft.com
> http://blogs.technet.com/steriley > http://www.protectyourwindowsnetwork.com >
>
>
> "3iron3" <3iron3.DeleteThis@discussions.microsoft.com> wrote in message
> news:D504C2FC-2652-4C07-9044-C1DF6A8D820E@microsoft.com...
> > Well, i'm a student&part of a project in the university where this is the
> > main problem. But now i know that i should wite my own gina. i hope i can
> > do
> > this but i'm afraid it won't be easy...
> >
> > have a nice day
> >
> >
> > "Steve Riley [MSFT]" wrote:
> >
> >> Why do you want to do this? Is there something wrong with the existing
> >> choices? Writing your own authentication method is rarely a good idea.
> >> It's
> >> some of the most difficult code to write securely.
> >>
> >> Help me understand your business or technical need; perhaps I can suggest
> >> an
> >> alternative that doesn't require replacing a fundamental component of the
> >> operating system.
> >>
> >> --
> >> Steve Riley
> >> steve.riley.DeleteThis@microsoft.com
> >> http://blogs.technet.com/steriley > >> http://www.protectyourwindowsnetwork.com > >>
> >>
> >>
> >> "3iron3" <3iron3.DeleteThis@discussions.microsoft.com> wrote in message
> >> news:9BDD2EA3-B6C6-43C7-8B68-69931B9C2DF2@microsoft.com...
> >> > hi,
> >> >
> >> > I need some help to do the following: i want to use a unique
> >> > authentication/logon process for Windows XP (instead of the
> >> > original Windows logon). This means that before the logon
> >> > dialog box appears i want to use my own authentication mechanism
> >> > (It uses USB drive as a hardware key, in combination with free
> >> > software tools and asymmetric cryptography with a radius server.)
> >> > If the authentication fails, /for example no USB drive/ the
> >> > original logon dialog box should appear.
> >> >
> >> > Well, some of the main questions are i think:
> >> > - how can i execute my own logon application before the windows
> >> > logon dialog box appears? (maybe as a service??)
> >> > - if the logon succeed, how can i step over the original logon
> >> > dialog box and go straight to the desktop?
> >> >
> >> > thx any help in advance
> >>
(Msg. 8) Posted: Fri Aug 08, 2008 4:00 am
Post subject: Re: Unique Windows XP Authentication Add to elertz [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Windows Vista and Server 2008 have replaced the GINA with a credential
provider model with a pluggable architecture. Start your research by reading
about the new ICredentialProvider interfaces.
"3iron3" <3iron3 DeleteThis @discussions.microsoft.com> wrote in message
news:6B589D0F-125B-4E03-B745-7FED11EE1AEF@microsoft.com...
> Well, first of all, thx for the reply
> So, if GINA is not used in Vista then what is?
> Is it possible to do the same thing in Vista & if it is, how?
>
> thx in advance
>
>
> "Steve Riley [MSFT]" wrote:
>
>> Hm, strange assignment, and actually doesn't have much value these days.
>> The
>> GINA is deprecated; it's no longer used in Windows Vista or Windows
>> Server
>> 2008 and will not be used in any future version of Windows. I'd recommend
>> you have your instructor reconsider the assignment.
>>
>> --
>> Steve Riley
>> steve.riley DeleteThis @microsoft.com
>> http://blogs.technet.com/steriley >> http://www.protectyourwindowsnetwork.com >>
>>
>>
>> "3iron3" <3iron3 DeleteThis @discussions.microsoft.com> wrote in message
>> news:D504C2FC-2652-4C07-9044-C1DF6A8D820E@microsoft.com...
>> > Well, i'm a student&part of a project in the university where this is
>> > the
>> > main problem. But now i know that i should wite my own gina. i hope i
>> > can
>> > do
>> > this but i'm afraid it won't be easy...
>> >
>> > have a nice day
>> >
>> >
>> > "Steve Riley [MSFT]" wrote:
>> >
>> >> Why do you want to do this? Is there something wrong with the existing
>> >> choices? Writing your own authentication method is rarely a good idea.
>> >> It's
>> >> some of the most difficult code to write securely.
>> >>
>> >> Help me understand your business or technical need; perhaps I can
>> >> suggest
>> >> an
>> >> alternative that doesn't require replacing a fundamental component of
>> >> the
>> >> operating system.
>> >>
>> >> --
>> >> Steve Riley
>> >> steve.riley DeleteThis @microsoft.com
>> >> http://blogs.technet.com/steriley >> >> http://www.protectyourwindowsnetwork.com >> >>
>> >>
>> >>
>> >> "3iron3" <3iron3 DeleteThis @discussions.microsoft.com> wrote in message
>> >> news:9BDD2EA3-B6C6-43C7-8B68-69931B9C2DF2@microsoft.com...
>> >> > hi,
>> >> >
>> >> > I need some help to do the following: i want to use a unique
>> >> > authentication/logon process for Windows XP (instead of the
>> >> > original Windows logon). This means that before the logon
>> >> > dialog box appears i want to use my own authentication mechanism
>> >> > (It uses USB drive as a hardware key, in combination with free
>> >> > software tools and asymmetric cryptography with a radius server.)
>> >> > If the authentication fails, /for example no USB drive/ the
>> >> > original logon dialog box should appear.
>> >> >
>> >> > Well, some of the main questions are i think:
>> >> > - how can i execute my own logon application before the windows
>> >> > logon dialog box appears? (maybe as a service??)
>> >> > - if the logon succeed, how can i step over the original logon
>> >> > dialog box and go straight to the desktop?
>> >> >
>> >> > thx any help in advance
>> >>
All times are: Eastern Time (US & Canada) (change)
Page 1 of 1
You can post new topics in this forum You can reply to topics in this forum You can edit your posts in this forum You can delete your posts in this forum You can vote in polls in this forum
Home
Forums
Home
FAQ
Search
Profile
Private Messages
Log in/Register/Password
Windows XP