Solved

validate active directory login information

Posted on 2004-08-22
5
217 Views
Last Modified: 2012-08-14
Hello,

I'm going to write an server application that shall check the login information (Windows 2000 domain) given by a client.
How can I realize that issue? Because I've some code that shall do that, but it throws an error. There is a limitation in Windows, so a user can only be logged on once. The outcome of these is, that the logged on user could be authorized but any other user/password combination not.

Here is the code:
Private Function IsAuthenticated(ByVal strUserName As String, ByVal strPassword As String) As Boolean
On Error Resume Next
    Dim strADsPath      As String
    Dim iFlags          As String
    Dim strADsNamespace As String
   
    Dim oADsObject      As Object
    Dim oADsNamespace   As Object
   
    strADsPath = "WinNT://" & m_strDomain
    iFlags = "0"
   
    ' bind to the ADSI object and authenticate Username and password
    Set oADsObject = GetObject(strADsPath)
    strADsNamespace = left(strADsPath, InStr(strADsPath, ":"))
    Set oADsNamespace = GetObject(strADsNamespace)
    Set oADsObject = oADsNamespace.OpenDSObject(strADsPath, m_strDomain & "\" & strUserName, strPassword, 0)
   
    ' we're only bound if err.number = 0
    IsAuthenticated = (Err.Number = 0)
End Function


I read that it could be done with LDAP, but how to use it in VB6?
Or is there a way around the mentured login limitation?

best regards
Martin
0
Comment
Question by:mkrell
  • 3
5 Comments
 
LVL 76

Expert Comment

by:David Lee
Comment Utility
One way to do this is by changing the user's password.  To do that you have to supply the current password.  If the current password is wrong, then the change will fail and you'll know the current password si wrong.  This works okay, unless you have a policy in place that says a certain amount of time must pass after a password change before the user can change their password a second time.  Here's an example of this approach.  Look about half-way down in the code for a function called IsGoodPWD.

http://www.freevbcode.com/ShowCode.Asp?ID=4935

0
 
LVL 1

Author Comment

by:mkrell
Comment Utility
Ok that may work...
But in my opinion it's a bit strange to change the passwords for validating them. Is there no other way?

I found some VB.NET Code using LDAP to solute that... But I couldn't translate it to VB 6
0
 
LVL 76

Expert Comment

by:David Lee
Comment Utility
I seem to remember seeing one somewhere but I can't find it again.  I'll keep looking and if I find it I'll post it here.
0
 
LVL 76

Accepted Solution

by:
David Lee earned 125 total points
Comment Utility
I'd forgotten about this question.  I found the item I was thinking of.  It doesn't use LDAP though.  Here it is: http://vbnet.mvps.org/index.html?code/network/acceptsecuritycontext.htm  

If this isn't what you're looking for, then I recommend that the question be closed and a refund given.
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Introduction I needed to skip over some file processing within a For...Next loop in some old production code and wished that VB (classic) had a statement that would drop down to the end of the current iteration, bypassing the statements that were c…
This article describes some techniques which will make your VBA or Visual Basic Classic code easier to understand and maintain, whether by you, your replacement, or another Experts-Exchange expert.
Get people started with the process of using Access VBA to control Excel using automation, Microsoft Access can control other applications. An example is the ability to programmatically talk to Excel. Using automation, an Access application can laun…
Show developers how to use a criteria form to limit the data that appears on an Access report. It is a common requirement that users can specify the criteria for a report at runtime. The easiest way to accomplish this is using a criteria form that a…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now