Windows Authentication

Forums

My Profile

Inbox

Address Book

My Subscription

My Forums

Windows Authentication

Logged in as: Guest

arrSession:exec spGetSession 2,2,66392

	Active Users: There are 0 members and 0 guests.
	Users viewing this topic: none

Printable Version

All Forums >> [Scripting] >> WSH & Client Side VBScript >> Windows Authentication
Do you like VisualBasicScript.com? Link to us and help spread the word about our forum. Thanks!

Page: [1]

Message

<< Older Topic Newer Topic >>

Windows Authentication - 11/14/2008 1:34:42 AM

indyuk

Posts: 5
Score: 0
Joined: 7/10/2006
Status: offline

Hi,

I'd like to use VBS to authenticate against the Windows password. Is this possible? I'd like an inputbox which the user enters their password and the script then goes off and checks, and then finally comes back with a True/False value.

Any help would be appreciated.

Thanks

Post #: 1

RE: Windows Authentication - 11/14/2008 2:13:54 AM

ginolard

Posts: 1082
Score: 21
Joined: 8/10/2005
Status: offline

Extremely unlikely. You'll need to crack the WIndows password which is MD5 hash encrypted

_____________________________

Author of ManagePC - http://managepc.net
AD Query Template - http://www.visualbasicscript.com/m_40609/tm.htm
Consolidated Scripting Framework - http://www.visualbasicscript.com/m_59109/tm.htm

(in reply to indyuk)

Post #: 2

RE: Windows Authentication - 11/14/2008 2:29:58 AM

ebgreen

Posts: 5251
Score: 31
Joined: 7/12/2005
Status: offline

Are you doing this on a web page? What are you trying to accomplish? Why do you need to do this?

_____________________________

"... when you are good and crazy, oooh, oooh, oooh, the sky is the limit!" - The Tick
Goog places to start:http://www.visualbasicscript.com/m_24727/tm.htm
http://www.visualbasicscript.com/m_47117/tm.htm

(in reply to ginolard)

Post #: 3

RE: Windows Authentication - 11/14/2008 3:02:11 AM

indyuk

Posts: 5
Score: 0
Joined: 7/10/2006
Status: offline

quote:

ORIGINAL: ebgreen

Are you doing this on a web page?

Sort of. It's a form that I've developed for internal staff to use for requistions. Since you can't have a physical signature on a electronic form I gone for the next best thing...authenticate them against Windows by getting them to confirm their password. This is a bit like having a single sign-on.

I'm not after cracking it, I just want to pass the user's entered string and check it against their Windows account.

Hope that clarifies things.

(in reply to ebgreen)

Post #: 4

RE: Windows Authentication - 11/14/2008 3:05:24 AM

ebgreen

Posts: 5251
Score: 31
Joined: 7/12/2005
Status: offline

I don't think it can be done in straight VBScript. VBScript doesn't inherently have a secure way to handle passwords they are just plain text within the code. This is a huge security hole. ASP gives you this ability but it sounds like that isn't an option right now for you.

_____________________________

"... when you are good and crazy, oooh, oooh, oooh, the sky is the limit!" - The Tick
Goog places to start:http://www.visualbasicscript.com/m_24727/tm.htm
http://www.visualbasicscript.com/m_47117/tm.htm

(in reply to indyuk)

Post #: 5

RE: Windows Authentication - 11/14/2008 3:17:24 AM

TNO

Posts: 1402
Score: 16
Joined: 12/18/2004
From: thenewobjective.com
Status: offline

Disclaimer: I'm a webdev and not a sysadmin but perhaps there is a pure vbs equivalent to the methods used here:

http://www.eggheadcafe.com/articles/20010126.asp

attempt to change the password to itself and see if it throws an error?

_____________________________

To iterate is human, to recurse divine. -- L. Peter Deutsch

(in reply to ebgreen)

Post #: 6

RE: Windows Authentication - 11/14/2008 3:47:35 AM

ginolard

Posts: 1082
Score: 21
Joined: 8/10/2005
Status: offline

haha, that's a clever idea.

_____________________________

Author of ManagePC - http://managepc.net
AD Query Template - http://www.visualbasicscript.com/m_40609/tm.htm
Consolidated Scripting Framework - http://www.visualbasicscript.com/m_59109/tm.htm

(in reply to TNO)

Post #: 7

RE: Windows Authentication - 11/14/2008 3:50:04 AM

ebgreen

Posts: 5251
Score: 31
Joined: 7/12/2005
Status: offline

It is clever, but it won't work in most enterprises where passwords are set to expire since you typically can't change your password to anything that it has been for x number of iterations in the past. So trying to change it to itself would throw an error anyway. Although now that I think about it, it might be a different error.

_____________________________

"... when you are good and crazy, oooh, oooh, oooh, the sky is the limit!" - The Tick
Goog places to start:http://www.visualbasicscript.com/m_24727/tm.htm
http://www.visualbasicscript.com/m_47117/tm.htm

(in reply to ginolard)

Post #: 8

RE: Windows Authentication - 11/14/2008 5:05:49 AM

TNO

Posts: 1402
Score: 16
Joined: 12/18/2004
From: thenewobjective.com
Status: offline

Run something like this to see if you can log into yourself?

_____________________________

To iterate is human, to recurse divine. -- L. Peter Deutsch

(in reply to ebgreen)

Post #: 9

RE: Windows Authentication - 11/16/2008 9:59:11 PM

indyuk

Posts: 5
Score: 0
Joined: 7/10/2006
Status: offline

quote:

ORIGINAL: TNO

Run something like this to see if you can log into yourself?

Set objSWbemLocator = CreateObject("WbemScripting.SWbemLocator") Set objRStdRegProv = objSWbemLocator.ConnectServer("RemoteComputer", "root\default:stdregprov","username", "password")

Would code be for a Domain or AD account?

(in reply to TNO)