Custom Credential Provider for Password Reset

Custom Credential Provider for Password Reset

  • Comments 20
  • Likes

The credential provider for Password Reset is fairly simply and straight forward. Since I have joined the team, there is very little code change in that area. Recently, we decided to fix some minor known bug in the credential provider (CP) and I realized I don't know too much about how CP works.

So I  downloaded the samples in Windows SDK and played with it. After some time, I came up with the following.

Notice the extra tile at logon screen

... and after you click on the tile.
 

Feel free to download the source code and play with it. The zip file contains x86 and x64 release builds.

 P.S. You have to click into this post to see the attachment.

WARNING: THIS CUSTOM CREDENTIAL PROVIDER IS NOT SUPPORTED AND IS PROVIDED AS IS WITHOUT ANY WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED.

Attachment: CustomCP.zip
Comments
  • Anthony,

    I would love to check out the code but I can't find the link.

  • Never mind I see it. Eyes too watery from my cold

  • This is really cool!

    I installed it on a W.2008 R2, and it runs perfectly!

    Congrats.

  • I have a question which you may know the answer two. I downloaded the Credential Provider Sample from MS and was able to unlock on a computer with no DOMAIN but it failed on a computer on a DOMAIN. Should domain be passed in any special way along with the username (DOMAIN\username did not seem to work) - or do the whole sample needs to be rewritten in order to support domain logon?

    Thanks!

  • i haven't looked into that

    maybe, the GetSerialization() in the sample is for local logon only

    this might have some useful information

    http://msdn.microsoft.com/en-us/library/bb776026%28VS.85%29.aspx

  • I need a Credential Provider to open a web page that allows the user to reset their password.

    Any suggestions would be greatly appreciated.

  • Have you tried this?

    support.microsoft.com/.../224816

  • I will give that a try. Thanks alot, there is not a lot of resources on Credential Provider, and your blog is very helpful :)

  • Thanks a million!

  • Hi,

    I can't found the GateFramework.dll. It's include in SDK or custom by your self? thanks :)

  • GateFramework.dll is part of Password Reset Client in Forefront Identity Manager 2010.

  • I want to hardcode PIN while smart logon.

    I read topic: stackoverflow.com/.../certificate-based-login

    I create instanse of struct KERB_CERTIFICATE_LOGON and then fill it  in ICredentialProviderCredential::GetSerialization method.

    What should I do next?

  • Will this work with Windows 7 Embedded?

  • Hi Anthony! I hava a question for you! This tool work only with FIM2010? I try to install into my PC and it's ok but when i try to reset my domain user password i recived this response: FAIL: LOADLIBRARY (GATE_FRAMEWORK_MODUL). Tks.

  • Hi Anthony, Does the source code can work with a link to a web application which i wrote using ASP.NET? Or is it works just with FIM2010?

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment