tags:

views:

47

answers:

1
+1  Q: 

Intercepting Change Password in Windows - Showing our custom interface

Hello all

I've been trying to synchronize the profile passwords of a third party system with AD. The third party system has its user profiles stored in a database.

I initially tried of writing a password filter to get the password in clear text and updating it in the database. Later i learnt that it is extremely risky to mess with the internals.

Now i'm thinking to intercept some event like 'begin change password' and show my custom interface to change the password instead of the default one. I know i cant intercept Ctrl + Alt + Del. But can i intercept this change password event and suppress the default behavior?

I'm looking for a generic solution that works in all the editions of Windows XP, Windows Vista and Windows 7.

Thank you.

+1  A: 

On XP/Server2003, you'd probably have done this by writing some GINA extension/replacement for the winlogon system. (Docs).

From Vista, these mechanisms were replaced by something called ICredentialProvider.

(So I suspect you're out of luck for a generic solution).

timday  2010-08-28 11:48:01
Is this a supported way of doing it? Can i use managed code like C# to develop this or should i use C++?
NLV  2010-08-31 11:17:39
Sorry, no idea. I only know a little about the "secure desktop" (winlogon) from some work to make server-side GPU (Direct3D) not be confused by it. Never actually needed to do any GINA-related stuff myself.
timday  2010-08-31 12:11:13

related questions

Querying Active Directory with "SQL"?
Can I get more than 1000 records from a DirectorySearcher in Asp.Net?
How to get AD User Groups for user in Asp.Net?
Attempting to update a user's "connect to:" home directory path in AD using C#
Monitoring group membership in Active Directory more efficiently (C# .NET)
How do I speed up data retrieval from .NET AD within ColdFusion
How do you authenticate against an Active Directory server using Spring Security?
Managing large user databases for single-signon.
Move Active Directory Group to Another OU using Powershell
How to move SharePoint sites from one active directory domain to another?
When did I last talk to my Domain Server?
Using ActiveDirectoryMembershipProvider with two domain controllers
I am having trouble getting phpBB to authenticate with our Active Directory
How do I use ADAM to run unit tests?
COMException "Library not registered." while using System.DirectoryServices
Caching Active Directory Data
Windows / Active Directory - User / Groups
Get a list of available domains (NT4 and Active Directory)
How do I use NTLM authentication with Active Directory
I/O permission settings using .net installer
quoting System.DirectoryServices.ResultPropertyCollection
How do you impersonate an Active Directory user in Powershell?
Setting Group Type for new Active Directory Entry in VB.NET
Is there a way for MS Access to grab the current Active Directory user?
Checklist for IIS 6/ASP.NET Windows Authentication?