Verifying the password

You can call the unmanaged Windows api function "LogonUser" to check user's
credentials. But this function supported by NT SP3 or higher clients.

Regards,

Dincer Uyav
di********@teknainternational.net

"Bevo" wrote:

We are developing a desktop application for a customer (VS 2003). The
customer wants us to retrieve the Windows logon information from Active
Directory, then ask the user to verify his password and then assure that this
password is the same as the one given when doing Windows logon. This must be
done before starting the app.

I wonder: whats the best way to accomplish this?

Thanks!

First off question about AD are better answered by the 2 Joe's in the
following newsgroup:

microsoft.public.adsi.general

But there are several ways to achieve what you want, you can use unmanaged
code via the win32 api 'LogonUser' or you can use the DirectoryServices
namespace.

Using the DirectoryServices namespace you could do something like this:
{
...
DirectoryEntry de = new DirectoryEntry();

// example LDAP string 'LDAP://CN=Users;DC=mydomain;DC=net'

de.Path = LDAP://CN=Users;DC=DOMAINNAME;DC=DOMAINSUFFIX;
de.Username = @"USERNAME";
de.Password = "PASSWORD";
string nativeGuid = de.NativeGuid;

...
}

When the call to 'de.NativeGuid' is made if the username or password are
invalid an exception will be thrown.

Have a look at this:

http://www.c-sharpcorner.com/Code/20.../ADand.NET.asp

HTH

Ollie Riches


"Bevo" <Be**@discussions.microsoft.com> wrote in message
news:00**********************************@microsof t.com...

We are developing a desktop application for a customer (VS 2003). The
customer wants us to retrieve the Windows logon information from Active
Directory, then ask the user to verify his password and then assure that
this
password is the same as the one given when doing Windows logon. This must
be
done before starting the app.

I wonder: whats the best way to accomplish this?

Thanks!

you can use System.DirectoryServices;

/// <summary>
/// AuthenticationTypes specifying the security
/// protocol to use, i.e. Secure, SSL
/// </summary>
private AuthenticationTypes atAuthentType;
using(DirectoryEntry deDirEntry = new DirectoryEntry(strDomain,
strUser,
strPass,
atAuthentType))

{
// if user is verified then it will welcome then
try
{
MessageBox.Show("Welcome");
// TODO: add your specific tasks here
}
catch (Exception exp)
{
MessageBox.Show("Sorry, unable to verify your information");
}
}

--
Vadym Stetsyak aka Vadmyst
http://vadmyst.blogspot.com
"Dincer Uyav" <Di********@discussions.microsoft.com> wrote in message
news:40**********************************@microsof t.com...

You can call the unmanaged Windows api function "LogonUser" to check user's credentials. But this function supported by NT SP3 or higher clients.

Regards,

Dincer Uyav
di********@teknainternational.net

"Bevo" wrote:

We are developing a desktop application for a customer (VS 2003). The
customer wants us to retrieve the Windows logon information from Active
Directory, then ask the user to verify his password and then assure that this password is the same as the one given when doing Windows logon. This must be done before starting the app.

I wonder: whats the best way to accomplish this?

Thanks!

hello!

I need to do you exactly the same, but using ASP, does anybody can help me?

tks!
LetÃ*cia
"Ollie Riches" wrote:

First off question about AD are better answered by the 2 Joe's in the
following newsgroup:

microsoft.public.adsi.general

But there are several ways to achieve what you want, you can use unmanaged
code via the win32 api 'LogonUser' or you can use the DirectoryServices
namespace.

Using the DirectoryServices namespace you could do something like this:
{
...
DirectoryEntry de = new DirectoryEntry();

// example LDAP string 'LDAP://CN=Users;DC=mydomain;DC=net'

de.Path = LDAP://CN=Users;DC=DOMAINNAME;DC=DOMAINSUFFIX;
de.Username = @"USERNAME";
de.Password = "PASSWORD";
string nativeGuid = de.NativeGuid;

...
}

When the call to 'de.NativeGuid' is made if the username or password are
invalid an exception will be thrown.

Have a look at this:

http://www.c-sharpcorner.com/Code/20.../ADand.NET.asp

HTH

Ollie Riches


"Bevo" <Be**@discussions.microsoft.com> wrote in message
news:00**********************************@microsof t.com...

We are developing a desktop application for a customer (VS 2003). The
customer wants us to retrieve the Windows logon information from Active
Directory, then ask the user to verify his password and then assure that
this
password is the same as the one given when doing Windows logon. This must
be
done before starting the app.

I wonder: whats the best way to accomplish this?

Thanks!

what you could do is create a .Net aasembly that does all your
authentication to AD in C# and then call this from classic ASP. To do this
you have to get .NET to generate a TLB library for your the .NET class. In
Vs.NET, you can modify the current build profile and set the "Register for
COM Interop" property to true.

http://www.csharphelp.com/archives/archive190.html
http://support.microsoft.com/?kbid=302901

HTH

Ollie Riches

"Leticia Chinen" <Leticia Ch****@discussions.microsoft.com> wrote in message
news:87**********************************@microsof t.com...

hello!

I need to do you exactly the same, but using ASP, does anybody can help
me?

tks!
Letícia
"Ollie Riches" wrote:

First off question about AD are better answered by the 2 Joe's in the
following newsgroup:

microsoft.public.adsi.general

But there are several ways to achieve what you want, you can use
unmanaged
code via the win32 api 'LogonUser' or you can use the DirectoryServices
namespace.

Using the DirectoryServices namespace you could do something like this:
{
...
DirectoryEntry de = new DirectoryEntry();

// example LDAP string 'LDAP://CN=Users;DC=mydomain;DC=net'

de.Path = LDAP://CN=Users;DC=DOMAINNAME;DC=DOMAINSUFFIX;
de.Username = @"USERNAME";
de.Password = "PASSWORD";
string nativeGuid = de.NativeGuid;

...
}

When the call to 'de.NativeGuid' is made if the username or password are
invalid an exception will be thrown.

Have a look at this:

http://www.c-sharpcorner.com/Code/20.../ADand.NET.asp

HTH

Ollie Riches


"Bevo" <Be**@discussions.microsoft.com> wrote in message
news:00**********************************@microsof t.com...

> We are developing a desktop application for a customer (VS 2003). The
> customer wants us to retrieve the Windows logon information from Active
> Directory, then ask the user to verify his password and then assure
> that
> this
> password is the same as the one given when doing Windows logon. This
> must
> be
> done before starting the app.
>
> I wonder: whats the best way to accomplish this?
>
> Thanks!

There isn't a license requirement for .Net as such (i.e. it is shipped with
the current windows OS's), you only need a license for Visual Studio .Net
which is the development tool form MS. You can of course use a free
development tool for .Net.

HTH

Ollie Riches

"Leticia Chinen" <Le***********@discussions.microsoft.com> wrote in message
news:1E**********************************@microsof t.com...

hi Ollie!!!

I can´t use your solution because here in the company we don´t have .NET
license. But I found an ASP solution.

If it is interesting for someone, there is a link with an example:
http://www.4guysfromrolla.com/webtech/061202-1.shtml

bye
Leticia

"Ollie Riches" wrote:

what you could do is create a .Net aasembly that does all your
authentication to AD in C# and then call this from classic ASP. To do
this
you have to get .NET to generate a TLB library for your the .NET class.
In
Vs.NET, you can modify the current build profile and set the "Register
for
COM Interop" property to true.

http://www.csharphelp.com/archives/archive190.html
http://support.microsoft.com/?kbid=302901

HTH

Ollie Riches

"Leticia Chinen" <Leticia Ch****@discussions.microsoft.com> wrote in
message
news:87**********************************@microsof t.com...

> hello!
>
> I need to do you exactly the same, but using ASP, does anybody can help
> me?
>
> tks!
> Letícia
>
>
> "Ollie Riches" wrote:
>
>> First off question about AD are better answered by the 2 Joe's in the
>> following newsgroup:
>>
>> microsoft.public.adsi.general
>>
>> But there are several ways to achieve what you want, you can use
>> unmanaged
>> code via the win32 api 'LogonUser' or you can use the
>> DirectoryServices
>> namespace.
>>
>> Using the DirectoryServices namespace you could do something like
>> this:
>> {
>> ...
>> DirectoryEntry de = new DirectoryEntry();
>>
>> // example LDAP string 'LDAP://CN=Users;DC=mydomain;DC=net'
>>
>> de.Path = LDAP://CN=Users;DC=DOMAINNAME;DC=DOMAINSUFFIX;
>> de.Username = @"USERNAME";
>> de.Password = "PASSWORD";
>> string nativeGuid = de.NativeGuid;
>>
>> ...
>> }
>>
>> When the call to 'de.NativeGuid' is made if the username or password
>> are
>> invalid an exception will be thrown.
>>
>> Have a look at this:
>>
>> http://www.c-sharpcorner.com/Code/20.../ADand.NET.asp
>>
>> HTH
>>
>> Ollie Riches
>>
>>
>>
>>
>> "Bevo" <Be**@discussions.microsoft.com> wrote in message
>> news:00**********************************@microsof t.com...
>> > We are developing a desktop application for a customer (VS 2003).
>> > The
>> > customer wants us to retrieve the Windows logon information from
>> > Active
>> > Directory, then ask the user to verify his password and then assure
>> > that
>> > this
>> > password is the same as the one given when doing Windows logon. This
>> > must
>> > be
>> > done before starting the app.
>> >
>> > I wonder: whats the best way to accomplish this?
>> >
>> > Thanks!
>>
>>
>>