I am writting an application in VB 2008. The application will reside on a 'Manufacturing Workstaion'. The workstation is assigned a user ID of Prodxx. Once the workstation is booted up and the application is running the 'Operator" must login to the application. The users who login to the app must have a valid account on the domain. I need to validate the individual users against the domain security. Many Users will login and logout during the day.
i am creating a login form (Win Form App) and would like to display the users in a combolist called CBXUserName and authenticate the user name and password (which the user will enter) against the matching user name and password stored in the active directory. if the user doesn't get it right for 3 times i do not want the workstation to lock.
I have a function that works perfectly when I attempt to add a user from the same domain into a group of the same domain.
Function AddUserToGroup(ByVal strUserDN As String, ByVal strGroupDN As String, ByVal strGRPDC As String, ByVal strUserDC As String) As Boolean Dim oUser As DirectoryEntry
[Code]....
The error is actually being thrown on the Invoke line, but as I said earlier, if the user is in the same domain, this works perfectly.
I know that using Dim currUser As String = Request.ServerVariables("LOGON_USER") retunrs the DomainUsername, but I want to know what Group that user is in say in Active Directory.
I use a simple application on a client in our domain. When i open the application as admin-user all works fine.When a domain-user with no special rights open the application theres is the following error message[code]...
I have a users domain and user id. I would like to retrieve the full user name. The data is coming from a SQL table for display onto an asp.net page. Anyone know how to get the users name for someone other then the user who is using the asp.net application?
How do I search all the user accounts in a domain in .NET? Not the computer names in the domain, but the user accounts, that's what you are using to log on Windows.
I have a question. I'm deploying my VB app that performs some task VIA SCCM. The application is run with the NTAuthoritySystem account.
I would like to copy a log file to a server all domain users/computer can right to this folder. I'm trying to get a log copied to the server but since it's running as the system account it can't authenticate to the share to save the log file on XP machines.
Can somebody show me example code of how to save a file as a different user when running the program with the system account . Would this be secure to use a domain account to impersonate and save the file?
we have a script which we use here to output a list of all the groups a user belongs to (for records before deletion) and it works fine for the first domain, but any sub domain are not searched. (due to "LDAP://rootDSE" I think)here is our current script
On Error Resume Next Const ForWriting = 2 UserName = InputBox("Enter Username","Enter Username")
[code]....
I want the script to search through all domains and sub-domains it can find until it finds the user, or runs out of domains to search. Once found, it then dumps the groups to a file (like it does now)
i am looking for information on how to get the current active directory users name? Basically i have a recording package program and some of the users have expressed the want to have it track who is entering which notes. So when a note is saved the program will take a look at who is currently logged into the computer and save it to the database. I have found how to do this for mac address, computer name and ip address but have not found anything yet for getting current logged on user.
I am putting together an old post here with this new one. My main goal is to combine these two portions so that the search does not need to be ran on each and every computer.
[Code]...
I can set the path as WinNT://domain.name/username...and I get a list of something, are they files? i am not sure? Second portion of code searches the computer for the java.exe to display its version, as well as searching for any indication of a java file on that computer.
I need my program to add all users selected in a checkedlist box to the local administrators group.I will be logged in as a domain admin when doing this , if soeone tries to run this without permissions it should prompt them for domain admin creds[code]...
I'm in the process of writing a script for use in our lab. I need it to remotely add a domain user to the local group "Remote Desktop Users" on some remote desktop servers we use to bridge two subnets. The person adding the user would have admin rights for that remote server. I would use GPO, but we don't control the domain and it'd be damned near impossible to convince IT to set aside a OU for us with just those machines. I've been looking at using WMI in the script I've been working on but I haven't got the slightest clue how I'd implement it.
I am able to find out when is the last time a user log into a domain but I am also wondering if it is possible to find out what's the machine's name or IP.
In my Active Directory, I see there is an attribute called logonWorkstation but it seems not being used (no value stored)
I have computers joined to a domain. I'm writing a desktop application that ask for a username and password to authenticate user against Active Directory.Sometimes, user uses this application on the computer that is not joined to the domain.I'm using .NET 3.5, System.DirectoryServices, and System.DirectoryServices.AccountManagement. Code sample how to authenticate users:
Private Function ValidateExternalUser(ByVal username As String, ByVal password As String) As Boolean Using context As PrincipalContext = New PrincipalContext(ContextType.Domain, "your_domain_here") Return context.ValidateCredentials(username, password, ContextOptions.Negotiate)
[code]....
I want to know how to check if user is already logged in on domain computer, then I don't have to ask them log into the application again.
Update:If it can't be done with System.DirectoryServices.AccountManagemen, is there any way to do it?
I have a piece of business-soft to make the lives of our employees easier. It's fairly typical, a tabbed-MDI style main form with a load of buttons that activate each of its sub-modules.
I have security set up on it so that someone in sales can't enter the module for purchasing, etc... I authenticate the user by having them type in their network password and check it against the AD server with this function:
'Remember to Imports System.DirectoryServices for this to work Private Function ValidateActiveDirectoryLogin(ByVal Domain As String, ByVal Username As String, ByVal Password As String) As Boolean
i need advise regarding user security on the network i am unable explain my need , because it won't visualize much hence i attached the graphical representation here kindly find it
Is it possible for a VB.NET web application to check the user's Windows security group and behave differently accordingly?I'd like to disable a certain bit of functionality if the user does not belong to a specific windows group.I've tried using the Microsoft code at url... but get the error "Reference to a non-shared member requires an object reference" on the "irc = WindowsIdentity.Groups" line (I have imported all the required namespaces).Does anyone know if it's possible to get the user's security group?
I have built a MVC website on IIS6. I used the built-in ASP.NET Security without Membership, just the way it was implemented in the template solution. It is easy to secure a contoller or action, but now I need to expose the user management to an admin logged into the site. I understand that the builtin ASP controls for doing this are not "best practice" and are a dog to get working. So what is the best practice for offering user management through a ASP.NET MVC application?
I considered using the Entity Framework and wireing it up to the myriad of stored procs. but that seems awkward. I see options for AccountMembershipService and FormsAuthenticationService. That is what the existing project account controller uses. But, I am not fimilliar with either.I can't help but think that this should have already been there from the project template. This is a fundamental part of any website and you were given 15%, why not the rest?
I need to have the ability to have a Global variable/class that stores some basic information about the currently logged in user including that user's preferences, security rights, UserID, etc. This information will be needed by any/every part of my application. In the past I have either used a Public variable/class in a vb.net module for this purpose. I'm trying to get away from my old ways of doing things and was curious what people currently do for this functionality.
I am thinking a singleton or 2 regarding preferences and security but am not sure if that is the best way to go.
EDIT: I asked this when I was too sleepy last night. This is an n-Tier WinForms application.
I am creating a VB.NET application for a Calculus class as a little side-project. It requires user profiles that are saved locally in the program's main files. I am using 2 separate classes to access the user profiles right now.
The first class is called Config and it is used to manipulate the basic config file which contains lesson document paths, settings, and user profile names.
The second class is called User and it is used to load up user profiles from a profile directory where user data is saved in separate text files.
The Config class retrieves the user names, and user profile text file paths. This text file path is then handed off to a User object that can then load up and interpret the file.
how should I format the config file and user files so they are secure enough that someone can not easily retrieve or manipulate data?
Here is a sample of how I am reading the text files:
Dim userList() As String = {Nothing} If My.Computer.FileSystem.FileExists(configPath + "config.cfg") Then Using MyReader As New Microsoft.VisualBasic.FileIO.TextFieldParser(configPath + "config.cfg")
[Code]....
The problem isn't reading the text file, I am just not sure how to make it secure. I was thinking about first parsing the entire file to translate it from 'encrypted' to text, and then save it as a temporary file which I would pass off to the above code, then delete the file immediately afterward. As for 'encrypting' (is that the right word for this?) the file, I could maybe bit-shift each character using a key that I would save at the beginning of the file.
Protected Sub Login_Authenticate(ByVal sender As Object, ByVal e As System.Web.UI.WebControls.AuthenticateEventArgs) Handles Login.Authenticate Dim objcon As New SqlConnection() Dim query As String
I'm a beginner when it comes to VB. th this. I have a Windows Application that I'm making for a friend. It's written in VB and connects to a SQL Server database. My problem is that when a user enters their username and password, then clicks on the OK button (all in a Login form that Visual Studio has a template for), the connection string is verified and connects, but for some reason
Today I was just wondering how I would go about authenticating a HttpWebRequest to a certain site. I'm trying to get the Response from an order page to parse the HTML from it, however it always redirects to the login page when I try, even after assigning the credentials.
Im using the SSL stream class to connect to a server and authenticate their self-signed certificate. My authentication code gets an error: "RemoteCertificateChainErrors". When I drill down into the X509ChainStatuses, I only see a status of "UntrustedRoot" and status information of "A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider." This seems acceptable due to the self-signed nature of their certificate. I understand that I can ignore this error. However, Id like to do as much as possible to authenticate. I have a certificate from them. Ive been told to add their cert to my root certs somehow. How do I correct my code use this cert in authentication?
Does anyone know how this can be done? The problem is that when you run the script to add a domain user to the local group as a local user you have no permissions to query the domain. Is there a way to pass a user name and password when doing this? [code]...
