Jonas Posted December 6, 2011 Report Posted December 6, 2011 (edited) Is there an easy way to use windows authentication within LabVIEW? Tried to browse through . net functions but I couldn’t find a usefull one… I’m using a 64 bit windows 7 system and I want a function that checks if the user and password combination is valid and which groups the user is member of. Thanks in advance. Edited December 6, 2011 by Jonas 1 Quote
crelf Posted December 6, 2011 Report Posted December 6, 2011 I'd post code, but it's part of our internal reuse library, so I won't. That said, here's a summary of what you can tyr: To get a member's groups, call a command prompt with net group /domain Then look at the text between the "----------" and the "The command completed successfully". Then iterate over the groups with a command prompt net user /domain "%s" for the groups the member belongs to. Note: you could get the user list first, then loop over them to get groups, but that is *much* slower, depending on how many domain controllers there are, and how geographically distributed they are. Quote
Jonas Posted December 6, 2011 Author Report Posted December 6, 2011 I'd post code, but it's part of our internal reuse library, so I won't. That said, here's a summary of what you can tyr: .... Thanks Crelf , And do you have any idea about checking the password? Better than using the RUNAS command... Kind regards, Jonas Quote
asbo Posted December 6, 2011 Report Posted December 6, 2011 Have a look at the LogonUser() Windows API. Should be pretty easy to use. Quote
Popular Post lavezza Posted December 8, 2011 Popular Post Report Posted December 8, 2011 (edited) Here are the VIs we use for Windows authentication and domain groups. Validate Username and Password.vi takes the username and password and returns a TRUE if it validates against the domain controller. User in Group.vi takes a username (or current user if left blank) and a Domain Group name and returns TRUE if the user is a member. User Groups.vi takes a username (or current user if left blank) and returns an array of Domain Groups to which the user belongs. We only use these on our internal network, so I can't guarantee they work in every situation. Still, they may give you a starting point if you need something similar. Pat P.S. LabVIEW 2010sp1 User Groups.vi User in Group.vi Validate Username and Password.vi Edited December 8, 2011 by lavezza 11 3 Quote
crelf Posted December 12, 2011 Report Posted December 12, 2011 Here are the VIs we use for Windows authentication and domain groups. Nice work Pat. Quote
ajmoyer Posted March 22, 2012 Report Posted March 22, 2012 Anybody verified this with Windows XP system. Any changes need to be made to an XP machine to make it work? Quote
tnt Posted March 23, 2012 Report Posted March 23, 2012 Anybody verified this with Windows XP system. Any changes need to be made to an XP machine to make it work? Verifying the Domain credentials worked for me on Windows XP, just make sure the domain name is filled in correctly. Quote
mechatronicsengr Posted June 14, 2015 Report Posted June 14, 2015 Hi, I hope you are doing well. I am trying to use these VI for windows login. Can anyone please explain Validate Username and Password .vi? Like what information is put where? Thanks Quote
hooovahh Posted June 15, 2015 Report Posted June 15, 2015 Here's some information on the .net functions called. https://msdn.microsoft.com/en-us/library/bb299773(v=vs.110).aspx https://msdn.microsoft.com/en-us/library/system.directoryservices.accountmanagement.principalcontext.principalcontext(v=vs.110).aspx https://msdn.microsoft.com/en-us/library/system.directoryservices.accountmanagement.principalcontext(v=vs.110).aspx Quote
Oleg Posted November 10, 2015 Report Posted November 10, 2015 Hi, Could anyone help me sort out how to obtain the list of users groups? I've permanently got the "System.Security.SecurityException: The name provided is not a properly formed account name." when I'm trying use UPN. All work fine for local user (user name is empty). The Validate_Username_and_Password.vi works fine for domain login and local account. I've also tried to get the UserToken via LogonUser() but unsuccessful (see test_logon.vi). It also doesn't work from C++ and the last printf() always returns two zeros. #include "stdafx.h" #include <Windows.h> #include <WinBase.h> #include <stdio.h> int _tmain(int argc, _TCHAR* argv[]) { HANDLE token = NULL; BOOL ret = LogonUserA("myname","mydomain","mypasswd",LOGON32_LOGON_INTERACTIVE,LOGON32_PROVIDER_DEFAULT,&token); printf("%d %ul\n", ret, token); } I'm using WIN10 64 bit and my computer not belongs to domain. I'm using local account. Thanks in advance test_logon.vi Quote
MesstechnikManufaktur Posted January 21, 2016 Report Posted January 21, 2016 Hi! Thank you very much. This great piece of work made my day Cheers. Andy Here are the VIs we use for Windows authentication and domain groups.Validate Username and Password.vi takes the username and password and returns a TRUE if it validates against the domain controller.User in Group.vi takes a username (or current user if left blank) and a Domain Group name and returns TRUE if the user is a member.User Groups.vi takes a username (or current user if left blank) and returns an array of Domain Groups to which the user belongs.We only use these on our internal network, so I can't guarantee they work in every situation. Still, they may give you a starting point if you need something similar.PatP.S. LabVIEW 2010sp1 Quote
Jordi Julian Posted October 24, 2017 Report Posted October 24, 2017 Great vi, but I need to give some privilegis at a labview.exe file, when the app is runing under a standard user without this privilegis, what is the way to give some privilegis at the current execution. (of course I have a user with administrative privilegies) I working with Windows 10 or 7, and Labview 2017. Thanks in advanced Quote
mykb Posted February 28, 2018 Report Posted February 28, 2018 You can run a separate VI at logon with task scheduler. Then you give this VI admin rights and message it to do the things you need doing with a higher privilege. Thanks lavezza for the .NET code Quote
Viper Posted October 5, 2018 Report Posted October 5, 2018 The "validate user and password.vi" gives the programmer direct access to the users password. It may be starred out but there it is. Is there a native Windows call opens a standard windows window that prompts for both user name and password so that the programmer doesn't have direct access to the users password? Thanks lavezza for the .NET code! Norm Quote
smithd Posted October 6, 2018 Report Posted October 6, 2018 I was curious about this -- I wasn't able to find any example of code which offloads all the password handling to windows. You can open the standard windows login dialog, but you still get the password back. From a more realistic perspective, this is to be expected. When you use single-sign on from a browser, chrome or firefox has access to your password. When you log into your bank, google has your information. If you use a bad browser plugin, someone in the ukraine might have your information. Quote
LogMAN Posted October 6, 2018 Report Posted October 6, 2018 7 hours ago, smithd said: I wasn't able to find any example of code which offloads all the password handling to windows Are you looking for something like this? https://docs.microsoft.com/en-us/windows/desktop/api/wincred/nf-wincred-creduipromptforwindowscredentialsa Quote
smithd Posted October 6, 2018 Report Posted October 6, 2018 I saw that, it looked like it provided a mechanism to get the password back (where applicable). There are of course other login types these days like smart cards but thats kind of cheating in this case since Viper was specifically talking about passwords. Quote
John92124 Posted May 11, 2020 Report Posted May 11, 2020 On 12/8/2011 at 1:24 PM, lavezza said: Here are the VIs we use for Windows authentication and domain groups. Validate Username and Password.vi takes the username and password and returns a TRUE if it validates against the domain controller. User in Group.vi takes a username (or current user if left blank) and a Domain Group name and returns TRUE if the user is a member. User Groups.vi takes a username (or current user if left blank) and returns an array of Domain Groups to which the user belongs. We only use these on our internal network, so I can't guarantee they work in every situation. Still, they may give you a starting point if you need something similar. Pat P.S. LabVIEW 2010sp1 User Groups.vi 18.31 kB · 923 downloads User in Group.vi 14.18 kB · 815 downloads Validate Username and Password.vi 19.13 kB · 1,177 downloads I am using the User in Group.VI to determine if someone belongs to a group. When I run this VI with an empty string for the name, it defaults to the windowsIdentify "Get Current" and continues. This part works and I am able to determine if I am in the group. The next part I enter my windows credential name, which uses the windowsIdentify "sUserPrincipalName", I get a good return of my name, but a False if I'm in the Group. My goal is to use the text input Name to determine if I or other users are a valid group member. Any Ideas? -Thanks Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.