Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Use ADS to confirm password

Status
Not open for further replies.
benvegiard

benvegiard

Programmer
May 15, 2003
63
0
0
US
This should be simple, but I'm not finding it!

Is there a way to take a username and password and confirm that it is a valid network login by querying ADS?

Thanks,
Ben
 
Sort by date Sort by votes
There may be a better way than this... but it's an idea.

Take a look at "Impersonation". I haven't tried this myself, but if you can successfully impersonate that user with credentials supplied by the user... that should indicate that the credentials are valid.

Anyone feel free to correct me if I am mistaken.
 
Upvote 0 Downvote
Try to use WindowsIdentity.GetCurrent method to retrieve user account. From help, you will get more info.
 
Upvote 0 Downvote
Well, this is definately getting closer. I implemented the following:

Private Sub Button2_Click(ByVal sender As System.Object, ByVal e As System.EventArgs) Handles Button2.Click
SSPValidateUser("bvegi", "rubic", "")
End Sub

'The following two calls are used for ValidLogin function
<DllImport(&quot;C:\\WINNT\\System32\\advapi32.dll&quot;)> _
Public Shared Function LogonUser(ByVal lpszUsername As String, ByVal lpszDomain As String, ByVal lpszPassword As String, _
ByVal dwLogonType As Integer, ByVal dwLogonProvider As Integer, ByRef phToken As Integer) As Boolean
End Function

<DllImport(&quot;C:\\WINNT\\System32\\Kernel32.dll&quot;)> _
Public Shared Function GetLastError() As Integer
End Function


Shared Function ValidLogin(ByVal lsUsername As String, ByVal lsPassword As String) As Boolean
'The Windows NT user token.
Dim token1 As Integer

'The parameters for LogonUser are the user name, computer name, password,
'Logon type (LOGON32_LOGON_NETWORK_CLEARTEXT), Logon provider (LOGON32_PROVIDER_DEFAULT),
'and user token.
Dim loggedOn As Boolean = LogonUser(lsUsername, &quot;&quot;, lsPassword, 3, 0, token1)

'Call GetLastError to try to determine why logon failed if it did not succeed.
Dim ret As Integer = GetLastError()
MsgBox(CStr(ret))
If Not loggedOn Then
Return (False)
Else
Return (ret = 0)
End If
End Function

However, when attempting the LogonUser call, it returns an error of 1134 (no privlidges) which I am assuming means I cannot perform the function as I (the user) do not have admin rights on the server.

This, unfortunately, blocks the impersination idea as well since we have to gain the user token by making this call prior to creating the impersination.

My thoughts are to impersinate the administrator during the routine if I can get around the &quot;get current user token&quot; problem.

ANy thoughts?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

2009luca
  • Locked
  • Question
USE find instead to loop
Replies
2
Views
116
Andrzejek
Andrzejek
2009luca
difficult to crteate a query very complicated 1
Replies
9
Views
621
Andrzejek
Andrzejek
Niki_S
  • Locked
  • Question
How to use 2D array in vb 6? 1
Replies
10
Views
123
Andrzejek
Andrzejek
Niki_S
  • Locked
  • Question
How to use a combo box to get data from SQL? 1
Replies
1
Views
58
Andrzejek
Andrzejek
NewAccount13
  • Locked
  • Question
How to use Split function with Unicode Delimiter in Visual Basic 6
Replies
6
Views
93
strongm
strongm

Part and Inventory Search

Sponsor

Back
Top