How to edit GINA in windows XP and windows 7

Hi,
We have some remote users who are working from home, barely come to office and connect thru RSA VPN. Now we want them to first connect to VPN even before login window (Ctrl + Alt + Del) and this is only possible by editing GINA.
these guys have mixed client systems of Windows XP and windows 7 so please guide me and let me know how can i do it since i m not a developer.
pdixit1977Asked:
Who is Participating?
 
johnb6767Commented:
I havent tested that on Vista.... I would look to the AnyConnect client from Cisco, as I think it would have better support for the newer OSes....
0
 
johnb6767Commented:
What VPN product are you using? They might already have an alternate GINA available. I know Cisco has one....
0
 
pdixit1977Author Commented:
we are using RSA VPN (key fobs) and it uses cisco system VPN client to run.
0
Network Scalability - Handle Complex Environments

Monitor your entire network from a single platform. Free 30 Day Trial Now!

 
johnb6767Commented:
If you enable the Start before Login feature, the GINA will be replaced at next reboot.... Its in the Tools>Windows Logon Properties.....Believe it will change it to CSGina.dll, from MSGina.Dll....

Since you arent a developer, it would not be in your best interest to try and modify one.....

0
 
pdixit1977Author Commented:
John,
Can you please elaborate the "start before logon" feature and will it work with Vista or windows 7 as well.
0
 
pdixit1977Author Commented:
Actually Cisco VPN client has option to configure as "start before logon". I tested it on my Windows XP laptop and it works absolutely fine as per our expectation. thanks John.
But our environment have mixed mode of Windows XP, Vista and Windows 7 so please let me know something like this for Vista and windows 7 as well.
0
 
pdixit1977Author Commented:
but anyconnect is having cost involved, we have to purchase CAL (Certificates) for that. Is there any solution available without cost.
0
 
pdixit1977Author Commented:
"start before logon" is the best way to do this without touching the most critical windows component GINA/CP/PLAP.
In latest version of windows client OS like Vista and Windows7 its working absolutely fine. Here is the document/link which tell you how to enable SBL for "anyconnect".

http://www.cisco.com/en/US/docs/security/vpn_client/anyconnect/anyconnect22/administration/guide/22admin4.html#wp1008064
0
 
pdixit1977Author Commented:
I did not find the way how can we edit GINA but still the work around given by John is really awesome. Thanks John.
0
 
johnb6767Commented:
Your welcome!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.