Accessing security information from an authentication provider
08 Jul 2008 15:46:44 GMT
Hopefully, this isn't a hard question.
I'm writing a new authentication provider. What I want to know is, once
I know a user's username and domain, and have validated with our own
means that the user is who they say they are, I need to provide
information in the token like:
- The user's SID.
- What gro ...
|
Implementation of CardSignData() in smart card modules (minidrivers)
Mon, 7 Jul 2008 17:35:33 -0700 (PDT)
Hello there,
I'm trying to write a smart card minidriver interfacing the Base CSP
to PKCS#11. Googling reveals that I'm not the first one; anyway, I'm
"almost there" and I'd like to release this as OSS once it's finished.
It could also help other people who are trying to write a minidriver.
I'm using certut ...
|
How to enumerate Windows user accounts?
Mon, 7 Jul 2008 12:31:08 -0700
I need to programatically generate the names and SIDs of each real human
user of the computer. I want the EXACT same list as appears on the Windows
Welcome screen, and I need to do this for both XP and Vista. This is for a
consumer/home application, so I'm not interested is listing the names of
everyone in t ...
|
GPO to make User Group Power Users on Local System
Mon, 7 Jul 2008 11:14:01 -0700
I want to create a group policy which gives members of a user group "power
user" rights to a specific local workstations. What I'm trying to avoid is
overwriting a user who may have been manually added to the local power user
group. From what I understand, my domain group policy WILL OVERWRITE any
local/ma ...
|
Outlook and CSPs
Mon, 7 Jul 2008 07:18:00 -0700
I've written my own CSP, installed it, tested it with the CSP test suite, and
now want to try it with Microsoft Outlook. How do I get Outlook to use my CSP?
What I actually want to do is encrypt and decrypt emails using Outlook and I
want Outlook to offload the cryptographic processing to my CSP. Can anyone
...
|
How to make sure SSPI crypt/sign functions does not change the input
data buffer?
Mon, 7 Jul 2008 02:48:03 -0700 (PDT)
HI All
I'm playing with EncryptMessage/DecryptMessage/MakeSignature/
VerifySignature functions on SSPI/Kerberos. There seems quite a lot of
combination to arrange the SecBufferDest argument. Is there a way to
make sure that the input data (includes data and signature) are never
changed in-place?
Thanks
Sp ...
|
LsaLogonUserEx2, LsaLogonUser and LsaLogonUserEx
Sat, 05 Jul 2008 23:43:02 +0100
Hi,
I'm currently developing my own Credential Provider and Authentication
Package on Windows Vista.
I've succeeded to hook them up and I can trace which function of my
Authentication Package is called when I try to log in with my Credential
Provider.
For the moment, only LsaLogonUserEx2 is called. Ac ...
|
|
|
Named pipe communication between an application and a service
Thu, 3 Jul 2008 11:55:02 +0800
Hi,
I have a C++ project that splits into three parts. A desktop program (medium
integrity), a service application (SYSTEM account), and an asynchronous
pluggable protocol (low integrity).
The desktop program contains a named pipe server, created in the following
manner:
TCHAR LOW_INTEGRITY_SDDL_SACL_W[ ...
|
MS Enhanced Cryptographic Provider - key wrapping using RC4
Tue, 1 Jul 2008 12:08:35 -0700 (PDT)
Hi...
I'm developing own RSA provider, MS compatible... And can't understand
implementation symmetric key wrapping using RC4 in MS Enhanced
Cryptographic Provider... It not correspond with RFC 3217, describes
block ciphers... May be anybody meet description of this algorithm?
Thank you... ...
|
User interaction from LsaApLogonUser
01 Jul 2008 16:31:32 GMT
Can I interact with the user at all in my implementation of
LsaApLogonUser?
I'm implementing an authentication process, which involves a fairly
complex interaction. This includes, for example:
1. Collect the username.
2a. Send a request to authentication server asking for a "challenge".
2b. Simultaneous ...
|
