Enterprise IT Identity & Access Management

A Buyer's & Integrator's Guide - WebLog Version 1.0

Browse by Tags

Related Posts
  • Blog Post: Sample Code (VBScript) - Compare Two AD Groups and Get Membership Difference

    If you want two AD groups with the same membership but are afraid of mis-sync, I have a sample script to find the delta: On Error Resume Next Dim strGroup1, strGroup2, iArgs, oArgs iArgs = Wscript.arguments.count Set oArgs = Wscript.arguments strGroup1 = "cn=" & oArgs(0) & ",ou=ou_name...
  • Blog Post: Sample Code (Command) - Windows Vista Domain Join with smart card

    After you require smart card interactive logon in your environment, the traditional domain join will not work because you don't have a password. Windows Vista resolves this problem by allowing domain join with smart card. However, this new feature will work only if you have Root CA certifcate on smart...
  • Blog Post: Sample Code (VBScript) - Retrieve MIIS WMI Password History

    This is a sample WMI script to retrieve password change history for a specific account through MIIS. You just need to run it on MIIS server with MA name, domain name and account name as parameters. Option Explicit On Error Resume Next Dim Service Dim CsObjects Dim CsObject Dim Arguments Dim...
  • Blog Post: Sample Code (VBScript) - Query CAPICOM

    This script queries capicom com object to get cert expiration date. Capicom.dll must be installed and registered in order to run this script. If you need additional cert info, you can just add more CAPICOM Cert object properties to my sample code. Option Explicit on error resume next Const CAPICOM_MY_STORE...
  • Blog Post: Sample Code (C++) - Scan Certificate Expiration Date Remotely

    It is hard to find a tool to check certificate expiration date on a remote machine without logon locally. Here is my code to accomplish this job: // to build: cl scancert.cpp -link crypt32.lib //------------------------------------------------------ #include <windows.h> #include <wincrypt...
  • Blog Post: Sample Code (C#) - Provision User Accounts and Groups with MIIS

    Here is my sample code to provision AD use accounts and groups using MIIS MV Extension: // Use Visual Studio to build using System; using Microsoft.MetadirectoryServices; namespace Mms_Metaverse { public class MVExtensionObject : IMVSynchronization { public MVExtensionObject() { } void IMVSynchronization...
  • Blog Post: Sample Code (T-SQL) - Protecting Identity Data with SQL 2005 Data Encryption

    There are multiple ways to protect (encrypt) data with SQL 2005: either using certificate or password. Here is my code sample to use a password to encrypt identity data (assuming the identity table name as tblIdentity_SmartCard table, the identity data column as Identiy_PIN, and GUID as column with...